[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"extension-plugin-rknall-secrets-manager-vi":3,"guides-for-rknall-secrets-manager":273,"similar-k173em9jjhkfsnc4ynx2amzs2h8675kx":274},{"_creationTime":4,"_id":5,"children":6,"community":7,"display":9,"evaluation":21,"identity":212,"isFallback":217,"parentExtension":218,"providers":251,"relations":254,"repo":255,"workflow":272},1778054149306.42,"k173em9jjhkfsnc4ynx2amzs2h8675kx",[],{"reviewCount":8},0,{"description":10,"installMethods":11,"name":12,"sourceUrl":13,"tags":14},"Manages Docker secrets for GitLab stack projects, ensuring secrets are never in .env or docker-compose.yml. Handles migration from environment variables, validation, auditing, and secure secret generation",{},"GitLab Stack Secrets Manager","https://github.com/rknall/claude-skills/tree/HEAD/secrets-manager",[15,16,17,18,19,20],"docker","secrets","gitlab","security","devops","configuration",{"_creationTime":22,"_id":23,"extensionId":5,"locale":24,"result":25,"trustSignals":201,"workflow":210},1778054190610.8252,"kn7fs6cdagknhpmhj8aspf7g0x866wzb","en",{"checks":26,"evaluatedAt":191,"extensionSummary":192,"promptVersionExtension":193,"promptVersionScoring":194,"rationale":195,"score":196,"summary":197,"tags":198,"targetMarket":199,"tier":200},[27,32,35,38,42,45,49,54,57,60,65,69,72,76,79,82,85,88,91,94,98,102,106,111,115,118,121,124,128,131,134,137,140,143,146,149,152,155,158,161,164,167,170,173,177,180,183,187],{"category":28,"check":29,"severity":30,"summary":31},"Practical Utility","Problem relevance","pass","The displayed description clearly articulates the user problem of managing Docker secrets securely for GitLab stack projects, highlighting issues like secrets in .env or docker-compose.yml.",{"category":28,"check":33,"severity":30,"summary":34},"Unique selling proposition","The skill offers a specific solution for migrating secrets from insecure locations to Docker secrets, including validation, auditing, and generation, which goes beyond basic prompt capabilities.",{"category":28,"check":36,"severity":30,"summary":37},"Production readiness","The skill covers the complete lifecycle of secret management, from creation and migration to validation and auditing, making it production-ready.",{"category":39,"check":40,"severity":30,"summary":41},"Scope","Single responsibility principle","The extension focuses specifically on Docker secrets management for GitLab stack projects, adhering to a single, coherent domain.",{"category":39,"check":43,"severity":30,"summary":44},"Description quality","The displayed description accurately reflects the functionality described in the README and SKILL.md, covering secret migration, creation, validation, and auditing.",{"category":46,"check":47,"severity":30,"summary":48},"Invocation","Scoped tools","The skill uses scoped commands like 'migrate secrets', 'create secret', 'validate secrets', ensuring precise tool selection.",{"category":50,"check":51,"severity":52,"summary":53},"Documentation","Configuration & parameter reference","not_applicable","The skill does not expose configurable parameters or options that require documentation.",{"category":39,"check":55,"severity":30,"summary":56},"Tool naming","Tool names like 'migrate secrets', 'create secret', and 'validate secrets' are descriptive and domain-specific.",{"category":39,"check":58,"severity":30,"summary":59},"Minimal I/O surface","The skill's operations are focused on secret management tasks, and its output is primarily reports or confirmations, avoiding excessive data exposure.",{"category":61,"check":62,"severity":63,"summary":64},"License","License usability","info","The license is mentioned as 'Part of the rknall-custom-skills marketplace for Claude Code' in the README, but a specific SPDX identifier or license file is missing, making its exact usability unclear.",{"category":66,"check":67,"severity":52,"summary":68},"Maintenance","Commit recency","No commit history is available for evaluation.",{"category":66,"check":70,"severity":52,"summary":71},"Dependency Management","No third-party dependencies are explicitly managed by this skill.",{"category":73,"check":74,"severity":30,"summary":75},"Security","Secret Management","The skill is designed to manage secrets securely, ensuring they are not echoed into output and are handled according to best practices.",{"category":73,"check":77,"severity":30,"summary":78},"Injection","The skill focuses on managing secrets and does not appear to load or execute untrusted third-party data as instructions.",{"category":73,"check":80,"severity":30,"summary":81},"Transitive Supply-Chain Grenades","The skill's code is contained within the repository and does not appear to fetch or execute external scripts at runtime.",{"category":73,"check":83,"severity":30,"summary":84},"Sandbox Isolation","The skill operates within defined paths for managing secrets and does not attempt to modify files outside its designated scope.",{"category":73,"check":86,"severity":30,"summary":87},"Sandbox escape primitives","No sandbox-escape primitives like detached process spawns or retry loops around denied calls were found.",{"category":73,"check":89,"severity":30,"summary":90},"Data Exfiltration","The skill's primary function is secret management, and it does not appear to exfiltrate confidential data or perform undocumented outbound calls.",{"category":73,"check":92,"severity":30,"summary":93},"Hidden Text Tricks","The bundled content is free of hidden-steering tricks; descriptions are clean printable ASCII.",{"category":95,"check":96,"severity":30,"summary":97},"Hooks","Opaque code execution","The skill's code is readable bash/mjs and does not involve obfuscation, base64-decoded payloads, or runtime fetches.",{"category":99,"check":100,"severity":30,"summary":101},"Portability","Structural Assumption","The skill uses standard project paths like './secrets' and specifies preconditions, allowing for graceful handling if expected layouts are absent.",{"category":103,"check":104,"severity":52,"summary":105},"Trust","Issues Attention","No issue data available for evaluation.",{"category":107,"check":108,"severity":109,"summary":110},"Versioning","Release Management","warning","The manifest version is listed as 'n/a', and there is no changelog or explicit versioning field in the SKILL.md or README, making it difficult to track releases.",{"category":112,"check":113,"severity":30,"summary":114},"Code Execution","Validation","The skill appears to validate inputs and configurations related to secrets management, adhering to security best practices.",{"category":73,"check":116,"severity":30,"summary":117},"Unguarded Destructive Operations","While the skill modifies files (e.g., .env, docker-compose.yml), these operations are typically confirmations of user intent and guarded by the skill's focused purpose on secure secret management, not destructive in a general sense.",{"category":112,"check":119,"severity":30,"summary":120},"Error Handling","The skill's documentation and intended behavior suggest robust error handling for operations like file access and configuration updates.",{"category":112,"check":122,"severity":52,"summary":123},"Logging","The skill's primary function is secret management and validation; extensive logging is not a core requirement and is not explicitly implemented or required by the documentation.",{"category":125,"check":126,"severity":30,"summary":127},"Compliance","GDPR","The skill focuses on managing secrets and does not appear to operate on personal data without proper sanitization.",{"category":125,"check":129,"severity":30,"summary":130},"Target market","The skill is targeted towards managing Docker secrets for GitLab stack projects, which is a global development practice, and there are no specific regional limitations detected. Target market set to 'global'.",{"category":99,"check":132,"severity":30,"summary":133},"Runtime stability","The skill relies on standard shell commands and file operations, making it portable across POSIX-compliant systems.",{"category":39,"check":135,"severity":30,"summary":136},"Tool surface size","The skill exposes a focused set of tools related to secret management, well within the ideal range.",{"category":46,"check":138,"severity":30,"summary":139},"Name collisions","The skills in this marketplace appear to have distinct names and descriptions, minimizing the risk of router mismatches.",{"category":46,"check":141,"severity":30,"summary":142},"Overlapping near-synonym tools","The exposed tools ('create', 'migrate', 'validate') cover distinct secret management actions without significant overlap.",{"category":46,"check":144,"severity":52,"summary":145},"Hooks-off mechanism","This extension does not appear to utilize hooks, so a hooks-off mechanism is not applicable.",{"category":46,"check":147,"severity":52,"summary":148},"Hook matcher tightness","This extension does not utilize hooks, so hook matcher tightness is not applicable.",{"category":73,"check":150,"severity":52,"summary":151},"Hook security","This extension does not utilize hooks, so hook security is not applicable.",{"category":95,"check":153,"severity":52,"summary":154},"Silent prompt rewriting","This extension does not have a 'UserPromptSubmit' hook, so silent prompt rewriting is not applicable.",{"category":73,"check":156,"severity":52,"summary":157},"Permission Hook","This extension does not utilize 'PermissionRequest' hooks.",{"category":125,"check":159,"severity":52,"summary":160},"Hook privacy","This extension does not utilize hooks for logging or telemetry, making hook privacy not applicable.",{"category":112,"check":162,"severity":52,"summary":163},"Hook dependency","This extension does not utilize hooks, therefore hook dependency is not applicable.",{"category":50,"check":165,"severity":30,"summary":166},"Install / Setup Instructions","The README provides clear instructions for adding the marketplace and installing the skill, including example commands.",{"category":50,"check":168,"severity":30,"summary":169},"Feature Transparency","The README and SKILL.md comprehensively describe the skill's features, including its critical security focus and migration workflows.",{"category":50,"check":171,"severity":30,"summary":172},"Phantom features","All promised features, such as secret migration, creation, validation, and auditing, have corresponding implementations described in the documentation.",{"category":174,"check":175,"severity":30,"summary":176},"Convention","Layout convention adherence","The skill structure appears to follow Claude Code plugin conventions, with SKILL.md and README in the root directory.",{"category":174,"check":178,"severity":52,"summary":179},"Plugin state","This skill does not appear to require persistent state beyond its operational scope, making this check not applicable.",{"category":73,"check":181,"severity":30,"summary":182},"Keychain-stored secrets","The skill manages secrets externally and does not store them in `settings.json`, adhering to secure practices.",{"category":184,"check":185,"severity":52,"summary":186},"Dependencies","Tagged release sourcing","This skill does not bundle MCP servers, so this check is not applicable.",{"category":188,"check":189,"severity":30,"summary":190},"Installation","Clean uninstall","The skill performs file operations and configuration modifications that are expected to be cleanly reversible upon uninstall.",1778054181462,"This skill facilitates the secure management of Docker secrets by enabling users to create new secrets, migrate existing ones from insecure locations like .env or docker-compose.yml, validate configurations, audit for leaks, and protect against accidental commits to git. It also generates necessary entrypoint scripts for legacy containers.","2.0.0","3.4.0","The GitLab Stack Secrets Manager skill is a high-quality, production-ready tool with a clear focus on security and usability. It excels in its problem relevance, unique selling proposition, and comprehensive documentation. The only minor deduction comes from the lack of a specific SPDX license identifier, which is an 'info' severity finding and does not impact its overall 'verified' tier.",95,"A production-ready skill that securely manages Docker secrets for GitLab stack projects, ensuring no secrets are exposed in configuration files or version control.",[15,16,17,18,19,20],"global","verified",{"codeQuality":202,"collectedAt":203,"documentation":204,"maintenance":206,"security":207,"testCoverage":209},{},1778054168344,{"descriptionLength":205,"readmeSize":8},204,{},{"hasNpmPackage":208,"smitheryVerified":208},false,{"hasCi":208,"hasTests":208},{"updatedAt":211},1778054190610,{"githubOwner":213,"githubRepo":214,"locale":24,"slug":215,"type":216},"rknall","claude-skills","secrets-manager","plugin",true,{"_creationTime":219,"_id":220,"community":221,"display":222,"identity":234,"parentExtension":237,"providers":238,"relations":246,"workflow":248},1778054149306.4165,"k177qr61xrzsfq9e6y9wgxb33h8662mw",{"reviewCount":8},{"description":223,"installMethods":224,"name":225,"sourceUrl":226,"tags":227},"Custom Claude Code skills marketplace for architecture review, accessibility expertise, creative design generation, DevOps validation, infrastructure configuration, and GitLab stack management",{},"rknall Custom Claude Code Skills","https://github.com/rknall/claude-skills",[228,229,15,17,230,231,232,18,20,233],"development","design","python","architecture","accessibility","validation",{"githubOwner":213,"githubRepo":214,"locale":24,"slug":235,"type":236},"rknall-custom-skills","marketplace",null,{"extract":239,"llm":244},{"commitSha":240,"license":52,"marketplace":241},"ca7fbd0e07f824b119030f323da3409bc779f9bc",{"name":235,"pluginCount":242,"version":243},10,"0.7.1",{"promptVersionExtension":193,"promptVersionScoring":194,"score":245,"targetMarket":199,"tier":200},98,{"repoId":247},"kd76y3zr89fpvp98y3h1jpy6fh865a3d",{"anyEnrichmentAt":249,"extractAt":250,"githubAt":249,"llmAt":211,"updatedAt":211},1778054149925,1778054149306,{"extract":252,"llm":253},{"commitSha":240,"license":63},{"promptVersionExtension":193,"promptVersionScoring":194,"score":196,"targetMarket":199,"tier":200},{"parentExtensionId":220,"repoId":247},{"_creationTime":256,"_id":247,"identity":257,"providers":258,"workflow":269},1777995558409.8718,{"githubOwner":213,"githubRepo":214,"sourceUrl":226},{"discover":259,"github":262},{"sources":260},[261],"skills-sh",{"closedIssues90d":8,"forks":263,"openIssues90d":264,"pushedAt":265,"readmeSize":266,"stars":267,"topics":268},6,1,1760955076000,27635,43,[],{"discoverAt":270,"extractAt":271,"githubAt":271,"updatedAt":271},1777995558409,1778054155583,{"anyEnrichmentAt":249,"extractAt":250,"githubAt":249,"llmAt":211,"updatedAt":211},[],[275,292,313],{"_creationTime":276,"_id":277,"community":278,"display":279,"identity":285,"providers":287,"relations":290,"workflow":291},1778054149306.4194,"k173qmkt9htf62gdb4jj0ehgf5866tzs",{"reviewCount":8},{"description":280,"installMethods":281,"name":282,"sourceUrl":283,"tags":284},"Validates GitLab stack projects before deployment, ensuring proper architecture patterns, directory structure, secrets management, .env configuration, and Docker best practices. Detects issues and provides actionable guidance",{},"GitLab Stack Validator","https://github.com/rknall/claude-skills/tree/HEAD/stack-validator",[17,233,15,20,18,19],{"githubOwner":213,"githubRepo":214,"locale":24,"slug":286,"type":216},"stack-validator",{"extract":288,"llm":289},{"commitSha":240,"license":63},{"promptVersionExtension":193,"promptVersionScoring":194,"score":196,"targetMarket":199,"tier":200},{"parentExtensionId":220,"repoId":247},{"anyEnrichmentAt":249,"extractAt":250,"githubAt":249,"llmAt":211,"updatedAt":211},{"_creationTime":293,"_id":294,"community":295,"display":296,"identity":306,"providers":308,"relations":311,"workflow":312},1778054149306.4204,"k17bvxb7jbg30m24sg8bt95mms867zz0",{"reviewCount":8},{"description":297,"installMethods":298,"name":299,"sourceUrl":300,"tags":301},"Generates service-specific configuration files for GitLab stack projects using .env as primary config source. Creates nginx, PostgreSQL, Redis configs, meta files (CLAUDE.md, .gitignore, .dockerignore), with strict validation for secrets and paths",{},"GitLab Stack Config Generator","https://github.com/rknall/claude-skills/tree/HEAD/config-generator",[20,15,302,303,304,17,19,305,233],"nginx","postgresql","redis","code-generation",{"githubOwner":213,"githubRepo":214,"locale":24,"slug":307,"type":216},"config-generator",{"extract":309,"llm":310},{"commitSha":240,"license":52},{"promptVersionExtension":193,"promptVersionScoring":194,"score":245,"targetMarket":199,"tier":200},{"parentExtensionId":220,"repoId":247},{"anyEnrichmentAt":249,"extractAt":250,"githubAt":249,"llmAt":211,"updatedAt":211},{"_creationTime":314,"_id":315,"community":316,"display":317,"identity":330,"providers":334,"relations":339,"workflow":342},1778053078370.9038,"k17b5xsd2g2113z1wvtzcry55d866avy",{"reviewCount":8},{"description":318,"installMethods":319,"name":320,"sourceUrl":321,"tags":322},"Complete Git expertise for ALL operations with 2025 features (Git 2.49+, GitHub CLI 2.x). PROACTIVELY activate for: (1) ANY Git task, (2) Git 2.49+ features (git-backfill, path-walk API, reftables, sparse-checkout, worktrees), (3) Security (signed commits, zero-trust, secret scanning, CodeQL), (4) Trunk-Based Development, (5) GitHub CLI 2.x (Copilot CLI, model evaluations), (6) GitHub Actions 2025 (1 vCPU runners, immutable releases), (7) Modern workflows (monorepo, parallel development), (8) History rewriting/recovery. Provides: Git 2.49 git-backfill for partial clones, path-walk API, reftables migration, sparse-checkout (90% space reduction), worktrees, GitHub Copilot CLI, gh models eval, zero-trust security, signed commits (GPG/SSH), GitHub Actions 2025 features, automatic backups, safety guardrails, reflog recovery.",{},"Git Master Plugin","https://github.com/josiahsiegel/claude-plugin-marketplace/tree/HEAD/plugins/git-master",[323,324,19,325,326,327,18,328,329],"git","version-control","cli","windows","bash","workflow","recovery",{"githubOwner":331,"githubRepo":332,"locale":24,"slug":333,"type":216},"josiahsiegel","claude-plugin-marketplace","git-master",{"extract":335,"llm":338},{"commitSha":336,"license":337},"a05d923c8a3551d4274eef152649583d693b9b67","MIT",{"promptVersionExtension":193,"promptVersionScoring":194,"score":245,"targetMarket":199,"tier":200},{"parentExtensionId":340,"repoId":341},"k1741p5y8fyyp90j4zdea56w61867nj3","kd75az366mhppxzk11c689vzen865qkv",{"anyEnrichmentAt":343,"extractAt":344,"githubAt":343,"llmAt":345,"updatedAt":345},1778053080008,1778053078370,1778053164925]