Skills from clawhub.ai/gitgoodordietrying

This skill scaffolds, tests, documents, and mocks REST and GraphQL APIs from the command line. It contains explicit `curl` and shell commands (e.g., `kill $(lsof -t -i :3000)`), network endpoints like `https://api.example.com`, and auth variables such as `$TOKEN` and `process.env.PORT`; these are purpose-aligned and low risk.

This skill provides GitHub Actions CI/CD examples and guidance for creating workflows, deployments, caching, matrix builds, and secrets management. It includes purpose-aligned `run` steps and CLI examples (e.g., `gh api`, `docker`/`ghcr.io`) and shows using secrets like `DEPLOY_TOKEN` and `SSH_KEY`.

Advanced git operations beyond add/commit/push. Use when rebasing, bisecting bugs, using worktrees for parallel development, recovering with reflog, managing subtrees/submodules, resolving merge conflicts, cherry-picking across branches, or working with monorepos.

Parse, search, and analyze application logs across formats. Use when debugging from log files, setting up structured logging, analyzing error patterns, correlating events across services, parsing stack traces, or monitoring log output in real time.

This skill is a Docker container debugging guide covering logs, `docker exec`, `docker run`, networking, resource inspection, and Compose workflows. It contains explicit shell commands (e.g., `docker exec`, `docker run`) to be run on the host but no instructions to exfiltrate secrets or call external endpoints.

Provides `docker sandbox` instructions for creating and managing VM-isolated sandboxes and running agents and commands. It instructs executing shell commands (`docker sandbox exec`, `docker sandbox run`), configuring network access (`--allow-host`, `curl https://api.example.com/data`), and setting env vars (`-e KEY=VAL`, `HTTP_PROXY`, `HTTPS_PROXY`).

High-risk skill for DNS and network troubleshooting that provides shell commands and a diagnostic script for `dig`, `nc`, `curl`, `openssl`, and firewall tools. It explicitly instructs executing shell commands, making network calls to `httpbin.org` and public DNS servers, and storing proxy credentials in `HTTPS_PROXY`.

Write high-quality agent skills (SKILL.md files) for ClawdHub/MoltHub. Use when creating a new skill from scratch, structuring skill content, writing effective frontmatter and descriptions, choosing section patterns, or following best practices for agent-consumable technical documentation.

Optimize agent skills for discoverability on ClawdHub/MoltHub. Use when improving search ranking, writing descriptions for semantic search, understanding how the registry indexes skills, testing search visibility, or analyzing why a skill isn't being found.

Query, design, migrate, and optimize SQL databases. Use when working with SQLite, PostgreSQL, or MySQL — schema design, writing queries, creating migrations, indexing, backup/restore, and debugging slow queries. No ORMs required.

Writes Makefiles and task-runner examples (Make, Just, Task) for Go, Python, Node, and Docker projects. Contains executable shell recipes (e.g., `./scripts/deploy.sh`, `rm -rf bin/`) and network operations that push to `ghcr.io/myorg`.

Validate data with schemas across languages and formats. Use when defining JSON Schema, using Zod (TypeScript) or Pydantic (Python), validating API request/response shapes, checking CSV/JSON data integrity, or setting up data contracts between services.

Process, transform, analyze, and report on CSV and JSON data files. Use when the user needs to filter rows, join datasets, compute aggregates, convert formats, deduplicate, or generate summary reports from tabular data. Works with any CSV, TSV, or JSON Lines file.

This skill documents cron and systemd timer setup with examples, templates, and runnable shell commands for scheduling, monitoring, and backups. It includes explicit command execution (e.g., `crontab -e`, `sudo systemctl enable --now backup.timer`) and network examples such as `rsync -az /data/ backup-server:/backups/data/`.

This skill provides step-by-step developer emergency recovery procedures for `git`, `docker`, `ssh`, databases, and system issues. It instructs executing shell commands (including `git push --force`, `rm -rf`, `docker system prune`), calling network APIs like `gh api`, and inspecting/rotating secrets in `.env`.

This skill provides guidance for writing and managing IaC with Terraform, CloudFormation, and Pulumi. It includes explicit shell commands like `terraform apply`, `aws cloudformation create-stack`, and `pulumi up`, and instructs using secrets via env vars such as `TF_VAR_db_password` and `pulumi config set --secret dbPassword`.

Practical regex patterns across languages and use cases. Use when validating input (email, URL, IP), parsing log lines, extracting data from text, refactoring code with search-and-replace, or debugging why a regex doesn't match.

Write robust, portable shell scripts. Use when parsing arguments, handling errors properly, writing POSIX-compatible scripts, managing temp files, running commands in parallel, managing background processes, or adding --help to scripts.

This skill provides examples and tools to encode, decode, and convert data formats such as Base64, URL encoding, hex, Unicode, JWTs, hashing, and serialization. It includes many shell command examples and a `decode.sh` script that runs local commands and shows example network calls like `https://api.example.com/search`.

Write and run tests across languages and frameworks. Use when setting up test suites, writing unit/integration/E2E tests, measuring coverage, mocking dependencies, or debugging test failures. Covers Node.js (Jest/Vitest), Python (pytest), Go, Rust, and Bash.

Provides a comprehensive security-audit guide and a runnable `security-audit.sh` that scans dependencies, secrets, OWASP patterns, SSL/TLS, and file permissions. It includes explicit shell commands (`#!/bin/bash`, `npm audit`, `openssl s_client`), secret-scanning actions targeting `.env` and `~/.ssh`, and a broad filesystem scan using `find /`.

This skill documents SSH tunneling, port forwarding, jump hosts, key management, and secure file transfer using `ssh`, `scp`, and `rsync`. It instructs running shell commands, making network connections to hosts like `remote-server` and `bastion.example.com`, and handling private keys at `~/.ssh/id_ed25519`.

This skill audits agent `SKILL.md` files for structure, content quality, and actionability. It instructs running local shell commands like `head -20 skills/my-skill/SKILL.md` and `npx molthub@latest install skill-name`, enabling file reads and network package installs.

High-risk skill: includes many shell commands and a sample script that runs `eval "$CMD"`, enabling arbitrary command execution. It also issues network requests such as `https://api.example.com/endpoint` and local profiling endpoints like `http://localhost:6060/debug/pprof/profile?seconds=30`.