[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"extension-skill-mcollina-oauth-en":3,"guides-for-mcollina-oauth":363,"similar-k178pfdms9rr9k6j1b00f52n8s86myav-en":364},{"_creationTime":4,"_id":5,"children":6,"community":7,"display":9,"evaluation":15,"identity":242,"isFallback":226,"parentExtension":247,"providers":248,"relations":253,"repo":255,"tags":359,"workflow":360},1778692906303.5952,"k178pfdms9rr9k6j1b00f52n8s86myav",[],{"reviewCount":8},0,{"description":10,"installMethods":11,"name":13,"sourceUrl":14},"Implements OAuth 2.0/2.1 authorization flows in Fastify applications — configures authorization code with PKCE, client credentials, device flow, refresh token rotation, JWT validation, and token introspection/revocation endpoints. Use when setting up authentication, authorization, login flows, access tokens, API security, or securing Fastify routes with OAuth; also applies when troubleshooting token validation errors, mismatched redirect URIs, CSRF issues, scope problems, or RFC 6749/6750/7636/8252/8628 compliance questions.",{"claudeCode":12},"mcollina/skills","oauth","https://github.com/mcollina/skills",{"_creationTime":16,"_id":17,"extensionId":5,"locale":18,"result":19,"trustSignals":224,"workflow":240},1778693076229.388,"kn76c24wc655tsahscn7cyy3fd86nmfq","en",{"checks":20,"evaluatedAt":192,"extensionSummary":193,"features":194,"nonGoals":200,"promptVersionExtension":204,"promptVersionScoring":205,"purpose":206,"rationale":207,"score":208,"summary":209,"tags":210,"targetMarket":217,"tier":218,"useCases":219},[21,26,29,32,36,39,44,48,51,54,58,62,66,70,73,76,79,82,85,88,92,96,100,104,108,111,114,117,121,124,127,130,133,136,139,143,147,151,154,158,161,164,167,170,174,177,180,183,186,189],{"category":22,"check":23,"severity":24,"summary":25},"Practical Utility","Problem relevance","pass","The description clearly states the problem of implementing OAuth 2.0/2.1 flows in Fastify applications and names specific use cases like setting up authentication, debugging token validation, and resolving RFC compliance questions.",{"category":22,"check":27,"severity":24,"summary":28},"Unique selling proposition","The skill offers specific Fastify integration patterns for OAuth 2.0/2.1, including PKCE, refresh token rotation, and JWT validation, which goes beyond basic LLM capabilities for secure authentication.",{"category":22,"check":30,"severity":24,"summary":31},"Production readiness","The skill provides a complete lifecycle for OAuth 2.0/2.1 flows in Fastify, covering setup, callback handling, token validation, route protection, and refresh token rotation, indicating readiness for production use.",{"category":33,"check":34,"severity":24,"summary":35},"Scope","Single responsibility principle","The skill focuses specifically on OAuth 2.0/2.1 authorization flows within Fastify applications, without extending into unrelated domains like general testing or deployment.",{"category":33,"check":37,"severity":24,"summary":38},"Description quality","The displayed description accurately and concisely reflects the skill's capabilities, including specific OAuth flows and troubleshooting areas relevant to Fastify.",{"category":40,"check":41,"severity":42,"summary":43},"Invocation","Scoped tools","not_applicable","This is a skill, not a tool-based extension with multiple discrete commands. The skill's functionality is invoked as a whole.",{"category":45,"check":46,"severity":24,"summary":47},"Documentation","Configuration & parameter reference","The SKILL.md provides clear examples of configuration, including environment variables for client ID, secret, authorization server details, and callback URI, and outlines validation checkpoints for parameters like callbackUri.",{"category":33,"check":49,"severity":42,"summary":50},"Tool naming","This is a skill, not a tool-based extension with multiple discrete commands to name.",{"category":33,"check":52,"severity":24,"summary":53},"Minimal I/O surface","The skill's examples demonstrate focused input (request objects, tokens) and output (redirects, user data, new tokens) directly relevant to the OAuth flows being implemented.",{"category":55,"check":56,"severity":24,"summary":57},"License","License usability","The extension includes a standard MIT license file, which is permissive and widely usable.",{"category":59,"check":60,"severity":24,"summary":61},"Maintenance","Commit recency","The repository shows recent commits, with the last commit on April 17, 2026, indicating active maintenance.",{"category":59,"check":63,"severity":64,"summary":65},"Dependency Management","warning","While dependencies are listed in the installation example, there is no explicit mention of lockfiles or automated dependency update mechanisms like Dependabot, nor vulnerability scanning.",{"category":67,"check":68,"severity":24,"summary":69},"Security","Secret Management","The skill uses environment variables for sensitive credentials (CLIENT_ID, CLIENT_SECRET, AUTH_SERVER, CALLBACK_URI) and explicitly warns against logging raw tokens, indicating appropriate handling.",{"category":67,"check":71,"severity":24,"summary":72},"Injection","The skill focuses on configuring and integrating OAuth flows within Fastify, with no indication of loading or executing untrusted third-party data as instructions.",{"category":67,"check":74,"severity":24,"summary":75},"Transitive Supply-Chain Grenades","The skill relies on npm packages and standard Fastify plugins, with no evidence of runtime fetching of code or instructions from remote URLs.",{"category":67,"check":77,"severity":24,"summary":78},"Sandbox Isolation","The skill's operations involve configuring application logic and managing tokens, not modifying files outside the project or executing arbitrary system commands.",{"category":67,"check":80,"severity":24,"summary":81},"Sandbox escape primitives","The skill's provided code examples do not contain detached process spawns or retry loops around denied tool calls.",{"category":67,"check":83,"severity":24,"summary":84},"Data Exfiltration","The skill focuses on managing OAuth tokens and application configuration, with no evidence of instructions to read or submit confidential data to third parties.",{"category":67,"check":86,"severity":24,"summary":87},"Hidden Text Tricks","The bundled content and descriptions are free of hidden steering tricks, unicode tags, or other obfuscation methods.",{"category":89,"check":90,"severity":24,"summary":91},"Hooks","Opaque code execution","The provided code examples are standard TypeScript and JavaScript, with no obfuscation, base64 payloads, or runtime code fetching.",{"category":93,"check":94,"severity":24,"summary":95},"Portability","Structural Assumption","The installation instructions specify npm dependencies and provide TypeScript examples, assuming a Node.js/Fastify project structure, which is clearly declared.",{"category":97,"check":98,"severity":24,"summary":99},"Trust","Issues Attention","In the last 90 days, 4 issues were opened and 4 were closed, indicating a closure rate of 50%, with a low number of open issues.",{"category":101,"check":102,"severity":64,"summary":103},"Versioning","Release Management","The repository does not explicitly declare a version in SKILL.md frontmatter or use GitHub release tags. Installation instructions point to `HEAD`, making version pinning difficult.",{"category":105,"check":106,"severity":24,"summary":107},"Code Execution","Validation","The skill's examples and documentation emphasize validation of critical parameters like `callbackUri` and JWT claims (`exp`, `iss`, `aud`), aligning with secure coding practices.",{"category":67,"check":109,"severity":24,"summary":110},"Unguarded Destructive Operations","The skill focuses on configuration and token management, not destructive operations like file deletion or system changes.",{"category":105,"check":112,"severity":24,"summary":113},"Error Handling","The provided code snippets show robust error handling for JWT validation and token exchange, including structured error responses and clear messages.",{"category":105,"check":115,"severity":24,"summary":116},"Logging","The skill explicitly warns against logging raw tokens and focuses on secure handling, implying a responsible approach to logging sensitive information.",{"category":118,"check":119,"severity":42,"summary":120},"Compliance","GDPR","The skill deals with authentication tokens and application configuration, not directly with personal data that would require GDPR-specific sanitization beyond standard security practices.",{"category":118,"check":122,"severity":24,"summary":123},"Target market","The skill is focused on technical implementation of OAuth 2.0/2.1 flows in Fastify, with no apparent regional or jurisdictional limitations; targetMarket is 'global'.",{"category":93,"check":125,"severity":24,"summary":126},"Runtime stability","The skill is written in TypeScript and relies on standard npm packages and Fastify, making it portable across Node.js environments.",{"category":45,"check":128,"severity":24,"summary":129},"README","The repository includes a README file that clearly lists available skills and provides general usage instructions.",{"category":33,"check":131,"severity":42,"summary":132},"Tool surface size","This is a skill with a single main function, not a collection of multiple tools.",{"category":40,"check":134,"severity":42,"summary":135},"Overlapping near-synonym tools","As a skill, it does not expose multiple discrete tools with potentially overlapping names.",{"category":45,"check":137,"severity":24,"summary":138},"Phantom features","All advertised capabilities, such as PKCE, refresh token rotation, and JWT validation, are demonstrated with code examples and explanations in the SKILL.md.",{"category":140,"check":141,"severity":24,"summary":142},"Install","Installation instruction","The SKILL.md provides clear, copy-pasteable npm installation commands and detailed TypeScript code examples for registering and using the OAuth plugin.",{"category":144,"check":145,"severity":24,"summary":146},"Errors","Actionable error messages","Error handling examples in the SKILL.md provide specific error codes (e.g., 'token_expired', 'invalid_issuer') and descriptions, indicating what failed and why.",{"category":148,"check":149,"severity":64,"summary":150},"Execution","Pinned dependencies","The installation instructions list dependencies but do not include a lockfile (e.g., `package-lock.json`) to ensure reproducible builds and pinned versions.",{"category":33,"check":152,"severity":42,"summary":153},"Dry-run preview","The skill's operations are primarily configuration and token handling, not state-changing commands that would typically require a dry-run preview.",{"category":155,"check":156,"severity":42,"summary":157},"Protocol","Idempotent retry & timeouts","The skill's core operations do not involve remote calls or state-changing operations that require idempotency or hard timeouts in this context.",{"category":118,"check":159,"severity":24,"summary":160},"Telemetry opt-in","There is no evidence of telemetry collection in the skill's documentation or examples; it is assumed to be opt-in or non-existent.",{"category":40,"check":162,"severity":24,"summary":163},"Precise Purpose","The description clearly states the skill implements OAuth 2.0/2.1 flows in Fastify, names specific capabilities, and lists precise use cases and troubleshooting scenarios, defining its purpose and boundaries.",{"category":40,"check":165,"severity":24,"summary":166},"Concise Frontmatter","The frontmatter is concise, with the name, description, and metadata tags clearly defining the skill's core capability and purpose for precise routing.",{"category":45,"check":168,"severity":24,"summary":169},"Concise Body","The SKILL.md is well-structured with clear sections and code examples, staying under typical line limits and delegating deeper material to external files if necessary.",{"category":171,"check":172,"severity":24,"summary":173},"Context","Progressive Disclosure","The SKILL.md outlines the main authorization code flow and provides links to other potential implementation details like DEVICE_FLOW.md, TOKEN_VALIDATION.md, etc., demonstrating progressive disclosure.",{"category":171,"check":175,"severity":42,"summary":176},"Forked exploration","This skill is not an exploration or audit-style skill; it focuses on direct implementation and configuration tasks.",{"category":22,"check":178,"severity":24,"summary":179},"Usage examples","The SKILL.md provides comprehensive, end-to-end code examples for installing dependencies, registering the OAuth plugin, handling callbacks, JWT validation, route protection, and refresh token rotation, all of which appear functional.",{"category":22,"check":181,"severity":24,"summary":182},"Edge cases","The skill documents validation checkpoints for redirect URIs, JWT claims (exp, iss, aud), and mentions common anti-patterns, addressing potential failure modes and limitations.",{"category":105,"check":184,"severity":42,"summary":185},"Tool Fallback","This skill does not appear to rely on external MCP tools or services that would require fallbacks; it uses standard npm packages.",{"category":93,"check":187,"severity":24,"summary":188},"Halt on unexpected state","The skill's code examples and documentation implicitly assume a correct Fastify project setup and valid OAuth server configuration, with validation checks designed to halt on unexpected states like token expiration or invalid issuers.",{"category":93,"check":190,"severity":24,"summary":191},"Cross-skill coupling","The skill is self-contained, focusing on Fastify and OAuth implementation, and does not appear to implicitly rely on other specific skills being loaded in the same session.",1778693076093,"This skill provides detailed instructions and code examples for integrating OAuth 2.0/2.1 authorization flows into Fastify applications, covering PKCE, refresh token rotation, JWT validation, and route protection.",[195,196,197,198,199],"Configures Authorization Code with PKCE","Supports Client Credentials and Device Flow","Implements Refresh Token Rotation","Handles JWT validation and token introspection","Secures Fastify routes with OAuth middleware",[201,202,203],"Implementing a full-fledged OAuth 2.0 authorization server","Providing client-side OAuth libraries for non-Node.js environments","Handling low-level network transport details beyond Fastify's capabilities","3.0.0","4.4.0","To enable developers to securely implement and manage OAuth 2.0/2.1 authorization flows within their Fastify applications, covering various grant types and security best practices.","High score due to comprehensive documentation, clear examples, and strong security practices. Minor warnings on dependency pinning and release management prevent a perfect score.",96,"A well-documented and secure skill for implementing OAuth 2.0/2.1 flows in Fastify applications.",[13,211,212,213,214,215,216],"oauth2","security","authentication","authorization","jwt","fastify","global","community",[220,221,222,223],"Setting up authentication and login flows in Fastify","Securing API routes with OAuth access tokens","Troubleshooting token validation errors and RFC compliance","Implementing secure API security patterns with OAuth 2.1",{"codeQuality":225,"collectedAt":227,"documentation":228,"maintenance":231,"security":236,"testCoverage":238},{"hasLockfile":226},false,1778693055588,{"descriptionLength":229,"readmeSize":230},530,1400,{"closedIssues90d":232,"forks":233,"hasChangelog":226,"openIssues90d":232,"pushedAt":234,"stars":235},4,135,1776438002000,1792,{"hasNpmPackage":226,"license":237,"smitheryVerified":226},"MIT",{"hasCi":239,"hasTests":239},true,{"updatedAt":241},1778693076229,{"basePath":243,"githubOwner":244,"githubRepo":245,"locale":18,"slug":13,"type":246},"skills/oauth","mcollina","skills","skill",null,{"evaluate":249,"extract":251},{"promptVersionExtension":204,"promptVersionScoring":205,"score":208,"tags":250,"targetMarket":217,"tier":218},[13,211,212,213,214,215,216],{"commitSha":252},"HEAD",{"repoId":254},"kd7e22d93dm7xdjcrsgq33f53d86mqm7",{"_creationTime":256,"_id":254,"identity":257,"providers":258,"workflow":355},1778692902463.346,{"githubOwner":244,"githubRepo":245,"sourceUrl":14},{"classify":259,"discover":349,"github":352},{"commitSha":252,"extensions":260},[261,272,280,288,296,304,312,317,325,333,341],{"basePath":262,"description":263,"displayName":264,"installMethods":265,"rationale":266,"selectedPaths":267,"source":271,"sourceLanguage":18,"type":246},"skills/documentation","Creates, structures, and reviews technical documentation following the Diátaxis framework (tutorials, how-to guides, reference, and explanation pages). Use when a user needs to write or reorganize docs, structure a tutorial vs. a how-to guide, build reference docs or API documentation, create explanation pages, choose between Diátaxis documentation types, or improve existing documentation structure. Trigger terms include: documentation structure, Diátaxis, tutorials vs how-to guides, organize docs, user guide, reference docs, technical writing.","documentation",{"claudeCode":12},"SKILL.md frontmatter at skills/documentation/SKILL.md",[268],{"path":269,"priority":270},"SKILL.md","mandatory","rule",{"basePath":273,"description":274,"displayName":275,"installMethods":276,"rationale":277,"selectedPaths":278,"source":271,"sourceLanguage":18,"type":246},"skills/fastify","Guides development of Fastify Node.js backend servers and REST APIs using TypeScript or JavaScript. Use when building, configuring, or debugging a Fastify application — including defining routes, implementing plugins, setting up JSON Schema validation, handling errors, optimising performance, managing authentication, configuring CORS and security headers, integrating databases, working with WebSockets, and deploying to production. Covers the full Fastify request lifecycle (hooks, serialization, logging with Pino) and TypeScript integration via strip types. Trigger terms: Fastify, Node.js server, REST API, API routes, backend framework, fastify.config, server.ts, app.ts.","fastify-best-practices",{"claudeCode":12},"SKILL.md frontmatter at skills/fastify/SKILL.md",[279],{"path":269,"priority":270},{"basePath":281,"description":282,"displayName":283,"installMethods":284,"rationale":285,"selectedPaths":286,"source":271,"sourceLanguage":18,"type":246},"skills/init","Creates, updates, or optimizes an AGENTS.md file for a repository with minimal, high-signal instructions covering non-discoverable coding conventions, tooling quirks, workflow preferences, and project-specific rules that agents cannot infer from reading the codebase. Use when setting up agent instructions or Claude configuration for a new repository, when an existing AGENTS.md is too long, generic, or stale, when agents repeatedly make avoidable mistakes, or when repository workflows have changed and the agent configuration needs pruning. Applies a discoverability filter—omitting anything Claude can learn from README, code, config, or directory structure—and a quality gate to verify each line remains accurate and operationally significant.","init",{"claudeCode":12},"SKILL.md frontmatter at skills/init/SKILL.md",[287],{"path":269,"priority":270},{"basePath":289,"description":290,"displayName":291,"installMethods":292,"rationale":293,"selectedPaths":294,"source":271,"sourceLanguage":18,"type":246},"skills/linting-neostandard-eslint9","Configures ESLint v9 flat config and neostandard for JavaScript and TypeScript projects, including migrating from legacy `.eslintrc*` files or the `standard` package. Use when you need to set up or fix linting with `eslint.config.js` or `eslint.config.mjs`, troubleshoot lint errors, configure neostandard rules, migrate from `.eslintrc` to flat config, or integrate linting into CI pipelines and pre-commit hooks.","linting-neostandard-eslint9",{"claudeCode":12},"SKILL.md frontmatter at skills/linting-neostandard-eslint9/SKILL.md",[295],{"path":269,"priority":270},{"basePath":297,"description":298,"displayName":299,"installMethods":300,"rationale":301,"selectedPaths":302,"source":271,"sourceLanguage":18,"type":246},"skills/node","Provides domain-specific best practices for Node.js development with TypeScript, covering type stripping, async patterns, error handling, streams, modules, testing, performance, caching, logging, and more. Use when setting up Node.js projects with native TypeScript support, configuring type stripping (--experimental-strip-types), writing Node 22+ TypeScript without a build step, or when the user mentions 'native TypeScript in Node', 'strip types', 'Node 22 TypeScript', '.ts files without compilation', 'ts-node alternative', or needs guidance on error handling, graceful shutdown, flaky tests, profiling, or environment configuration in Node.js. Helps configure tsconfig.json for type stripping, set up package.json scripts, handle module resolution and import extensions, and apply robust patterns across the full Node.js stack.","node",{"claudeCode":12},"SKILL.md frontmatter at skills/node/SKILL.md",[303],{"path":269,"priority":270},{"basePath":305,"description":306,"displayName":307,"installMethods":308,"rationale":309,"selectedPaths":310,"source":271,"sourceLanguage":18,"type":246},"skills/nodejs-core","Debugs native module crashes, optimizes V8 performance, configures node-gyp builds, writes N-API/node-addon-api bindings, and diagnoses libuv event loop issues in Node.js. Use when working with C++ addons, native modules, binding.gyp, node-gyp errors, segfaults, memory leaks in native code, V8 optimization/deoptimization, libuv thread pool tuning, N-API or NAN bindings, build system failures, or any Node.js internals below the JavaScript layer.","nodejs-core",{"claudeCode":12},"SKILL.md frontmatter at skills/nodejs-core/SKILL.md",[311],{"path":269,"priority":270},{"basePath":243,"description":10,"displayName":13,"installMethods":313,"rationale":314,"selectedPaths":315,"source":271,"sourceLanguage":18,"type":246},{"claudeCode":12},"SKILL.md frontmatter at skills/oauth/SKILL.md",[316],{"path":269,"priority":270},{"basePath":318,"description":319,"displayName":320,"installMethods":321,"rationale":322,"selectedPaths":323,"source":271,"sourceLanguage":18,"type":246},"skills/octocat","Use this skill whenever the prompt contains any `github.com` URL, even if the user only pastes a link and gives no GitHub-specific keywords. Handles git and GitHub operations using the gh CLI. Triggers include any GitHub link to an issue, pull request, commit, compare page, Actions run, release, discussion, or repository. Covers creating and reviewing PRs, watching CI checks, interactive rebasing, branch cleanup, submodule management, and repository archaeology with git log/blame/bisect.","octocat",{"claudeCode":12},"SKILL.md frontmatter at skills/octocat/SKILL.md",[324],{"path":269,"priority":270},{"basePath":326,"description":327,"displayName":328,"installMethods":329,"rationale":330,"selectedPaths":331,"source":271,"sourceLanguage":18,"type":246},"skills/skill-optimizer","Optimizes AI skills for activation, clarity, and cross-model reliability. Use when creating or editing skill packs, diagnosing weak skill uptake, reducing regressions, tuning instruction salience, improving examples, shrinking context cost, or setting benchmark/release gates for skills. Trigger terms: skill optimization, activation gap, benchmark skill, with/without skill delta, regression, context budget, prompt salience.","skill-optimizer",{"claudeCode":12},"SKILL.md frontmatter at skills/skill-optimizer/SKILL.md",[332],{"path":269,"priority":270},{"basePath":334,"description":335,"displayName":336,"installMethods":337,"rationale":338,"selectedPaths":339,"source":271,"sourceLanguage":18,"type":246},"skills/snipgrapher","Configures and uses snipgrapher to generate polished code snippet images, including syntax-highlighted PNGs, SVGs, and WebP exports with custom themes, profiles, and styling options. Use when the user wants to create code screenshots, turn code into shareable images, generate pretty code snippets for docs or social posts, produce syntax-highlighted images from source files, or explicitly mentions snipgrapher. Supports single-file renders, batch jobs, watch mode, and reusable named profiles via the snipgrapher CLI or npx.","snipgrapher",{"claudeCode":12},"SKILL.md frontmatter at skills/snipgrapher/SKILL.md",[340],{"path":269,"priority":270},{"basePath":342,"description":343,"displayName":344,"installMethods":345,"rationale":346,"selectedPaths":347,"source":271,"sourceLanguage":18,"type":246},"skills/typescript-magician","Designs complex generic types, refactors `any` types to strict alternatives, creates type guards and utility types, and resolves TypeScript compiler errors. Use when the user asks about TypeScript (TS) types, generics, type inference, type guards, removing `any` types, strict typing, type errors, `infer`, `extends`, conditional types, mapped types, template literal types, branded/opaque types, or utility types like `Partial`, `Record`, `ReturnType`, and `Awaited`.","typescript-magician",{"claudeCode":12},"SKILL.md frontmatter at skills/typescript-magician/SKILL.md",[348],{"path":269,"priority":270},{"sources":350},[351],"manual",{"closedIssues90d":232,"description":353,"forks":233,"license":237,"openIssues90d":232,"pushedAt":234,"readmeSize":230,"stars":235,"topics":354},"My own collection of skills for modern Node.js development",[],{"classifiedAt":356,"discoverAt":357,"extractAt":358,"githubAt":358,"updatedAt":356},1778692906090,1778692902463,1778692904308,[213,214,216,215,13,211,212],{"evaluatedAt":241,"extractAt":361,"updatedAt":362},1778692906303,1778693262649,[],[365,397,425,445,466,492],{"_creationTime":366,"_id":367,"community":368,"display":369,"identity":375,"providers":380,"relations":390,"tags":393,"workflow":394},1778682677410.0369,"k172a96fyh4jrhrb5qc6tfrbp986nrey",{"reviewCount":8},{"description":370,"installMethods":371,"name":373,"sourceUrl":374},"Use when adding Auth0 token validation to Express or Node.js APIs - integrates express-oauth2-jwt-bearer SDK to protect Node.js API endpoints with JWT Bearer authentication, scope-based RBAC, claim validation, and optional DPoP support",{"claudeCode":372},"auth0/agent-skills","Auth0 Express OAuth2 JWT Bearer","https://github.com/auth0/agent-skills",{"basePath":376,"githubOwner":377,"githubRepo":378,"locale":18,"slug":379,"type":246},"plugins/auth0/skills/express-oauth2-jwt-bearer","auth0","agent-skills","express-oauth2-jwt-bearer",{"evaluate":381,"extract":388},{"promptVersionExtension":204,"promptVersionScoring":205,"score":382,"tags":383,"targetMarket":217,"tier":387},100,[377,215,213,384,385,212,386],"express","nodejs","api","verified",{"commitSha":252,"license":389},"Apache-2.0",{"parentExtensionId":391,"repoId":392},"k17b52m0t4j5ryyvea95kdqqr186nk9e","kd7d2wx4927yddhxgfpzw6t10x86m349",[386,377,213,384,215,385,212],{"evaluatedAt":395,"extractAt":396,"updatedAt":395},1778683411304,1778682677410,{"_creationTime":398,"_id":399,"community":400,"display":401,"identity":407,"providers":411,"relations":418,"tags":421,"workflow":422},1778699018122.7969,"k17a7mddxxkree1xx6sjwpxhw586njjn",{"reviewCount":8},{"description":402,"installMethods":403,"name":405,"sourceUrl":406},"Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues.",{"claudeCode":404},"wshobson/agents","auth-implementation-patterns","https://github.com/wshobson/agents",{"basePath":408,"githubOwner":409,"githubRepo":410,"locale":18,"slug":405,"type":246},"plugins/developer-essentials/skills/auth-implementation-patterns","wshobson","agents",{"evaluate":412,"extract":417},{"promptVersionExtension":204,"promptVersionScoring":205,"score":413,"tags":414,"targetMarket":217,"tier":387},98,[213,214,212,215,211,415,385,416],"rbac","typescript",{"commitSha":252},{"parentExtensionId":419,"repoId":420},"k171jexrpw54f9844mnfyra04586mvfk","kd74de64zj0axtg5b8t7eqqe2x86nske",[213,214,215,385,211,415,212,416],{"evaluatedAt":423,"extractAt":424,"updatedAt":423},1778701079365,1778699018122,{"_creationTime":426,"_id":427,"community":428,"display":429,"identity":433,"providers":435,"relations":441,"tags":442,"workflow":443},1778682677410.035,"k17a8h3wj2pvee6cykczjfvb7d86n9we",{"reviewCount":8},{"description":430,"installMethods":431,"name":432,"sourceUrl":374},"Use when implementing Auth0 authentication in Nuxt 3/4 applications, configuring session management, protecting routes with middleware, or integrating API access tokens - provides setup patterns, composable usage, and security best practices for the @auth0/auth0-nuxt SDK",{"claudeCode":372},"auth0-nuxt",{"basePath":434,"githubOwner":377,"githubRepo":378,"locale":18,"slug":432,"type":246},"plugins/auth0/skills/auth0-nuxt",{"evaluate":436,"extract":440},{"promptVersionExtension":204,"promptVersionScoring":205,"score":382,"tags":437,"targetMarket":217,"tier":387},[377,438,213,439,416,212],"nuxt","web",{"commitSha":252},{"parentExtensionId":391,"repoId":392},[377,213,438,212,416,439],{"evaluatedAt":444,"extractAt":396,"updatedAt":444},1778683222653,{"_creationTime":446,"_id":447,"community":448,"display":449,"identity":453,"providers":455,"relations":462,"tags":463,"workflow":464},1778682677410.034,"k174gmqbt8gyvhspqhe1hq0ems86ngmb",{"reviewCount":8},{"description":450,"installMethods":451,"name":452,"sourceUrl":374},"Use when adding Auth0 login, logout, and callback handling to Java Servlet web applications - integrates com.auth0:mvc-auth-commons SDK for server-side Java apps using javax.servlet with session-based authentication. Triggers on AuthenticationController, AuthorizeUrl, Tokens, IdentityVerificationException, Java MVC auth.",{"claudeCode":372},"auth0-java-mvc-common",{"basePath":454,"githubOwner":377,"githubRepo":378,"locale":18,"slug":452,"type":246},"plugins/auth0/skills/auth0-java-mvc-common",{"evaluate":456,"extract":461},{"promptVersionExtension":204,"promptVersionScoring":205,"score":382,"tags":457,"targetMarket":217,"tier":387},[377,458,459,213,211,460],"java","servlet","oidc",{"commitSha":252},{"parentExtensionId":391,"repoId":392},[377,213,458,211,460,459],{"evaluatedAt":465,"extractAt":396,"updatedAt":465},1778683121234,{"_creationTime":467,"_id":468,"community":469,"display":470,"identity":476,"providers":480,"relations":486,"tags":488,"workflow":489},1778683190010.2632,"k176t0s8p9te0tavvt1rj207wx86nrhg",{"reviewCount":8},{"description":471,"installMethods":472,"name":474,"sourceUrl":475},"Better Auth authentication flows for TypeScript apps. Use when enabling email/password auth, configuring social providers, or implementing sign-up, sign-in, and verification flows.",{"claudeCode":473},"bobmatnyc/claude-mpm-skills","better-auth-authentication","https://github.com/bobmatnyc/claude-mpm-skills",{"basePath":477,"githubOwner":478,"githubRepo":479,"locale":18,"slug":474,"type":246},"toolchains/platforms/auth/better-auth/better-auth-authentication","bobmatnyc","claude-mpm-skills",{"evaluate":481,"extract":485},{"promptVersionExtension":204,"promptVersionScoring":205,"score":482,"tags":483,"targetMarket":217,"tier":387},99,[416,213,212,214,484],"web-development",{"commitSha":252},{"repoId":487},"kd72g55e5qeqs90bk1bvkt8wbx86nkn3",[213,214,212,416,484],{"evaluatedAt":490,"extractAt":491,"updatedAt":490},1778684330269,1778683190010,{"_creationTime":493,"_id":494,"community":495,"display":496,"identity":502,"providers":506,"relations":512,"tags":514,"workflow":515},1778683070339.0771,"k17crp24t9yc2371wvg8k6b5v586majg",{"reviewCount":8},{"description":497,"installMethods":498,"name":500,"sourceUrl":501},"Add authentication with Better Auth (TypeScript). Use for email/password, OAuth providers (Google, GitHub), 2FA/MFA, passkeys/WebAuthn, sessions, RBAC, rate limiting.",{"claudeCode":499},"binjuhor/shadcn-lar","better-auth","https://github.com/binjuhor/shadcn-lar",{"basePath":503,"githubOwner":504,"githubRepo":505,"locale":18,"slug":500,"type":246},".claude/skills/better-auth","binjuhor","shadcn-lar",{"evaluate":507,"extract":511},{"promptVersionExtension":204,"promptVersionScoring":205,"score":482,"tags":508,"targetMarket":217,"tier":387},[213,214,416,13,212,509,510],"webauthn","2fa",{"commitSha":252},{"repoId":513},"kd7b04jshnqyx91sq3jrqtm56s86mmmq",[510,213,214,13,212,416,509],{"evaluatedAt":516,"extractAt":517,"updatedAt":516},1778683120562,1778683070339]