[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"extension-skill-mcollina-oauth-zh-CN":3,"guides-for-mcollina-oauth":366,"similar-k179asg4prsxx9653fj5ygfjf186np5e-zh-CN":367},{"_creationTime":4,"_id":5,"children":6,"community":7,"display":9,"evaluation":15,"identity":241,"isFallback":225,"parentExtension":246,"providers":247,"relations":253,"repo":256,"tags":362,"workflow":363},1778693237704.9846,"k179asg4prsxx9653fj5ygfjf186np5e",[],{"reviewCount":8},0,{"description":10,"installMethods":11,"name":13,"sourceUrl":14},"为 Fastify 应用程序实现 OAuth 2.0/2.1 授权流程——配置 PKCE 授权码、客户端凭证、设备流、刷新令牌轮换、JWT 验证以及令牌内省/撤销端点。在设置身份验证、授权、登录流程、访问令牌、API 安全，或使用 OAuth 保护 Fastify 路由时使用；也适用于对令牌验证错误、重定向 URI 不匹配、CSRF 问题、范围问题或 RFC 6749/6750/7636/8252/8628 合规性问题的故障排除。",{"claudeCode":12},"mcollina/skills","oauth","https://github.com/mcollina/skills",{"_creationTime":16,"_id":17,"extensionId":5,"locale":18,"result":19,"trustSignals":223,"workflow":239},1778693237704.9849,"kn77kratb42sghftkv2n1vq1ss86nqks","zh-CN",{"checks":20,"evaluatedAt":192,"extensionSummary":193,"features":194,"nonGoals":200,"promptVersionExtension":204,"promptVersionScoring":205,"purpose":206,"rationale":207,"score":208,"summary":209,"tags":210,"tier":217,"useCases":218},[21,26,29,32,36,39,44,48,51,54,58,62,66,70,73,76,79,82,85,88,92,96,100,104,108,111,114,117,121,124,127,130,133,136,139,143,147,151,154,158,161,164,167,170,174,177,180,183,186,189],{"category":22,"check":23,"severity":24,"summary":25},"实用性","问题相关性","pass","描述清楚地说明了在 Fastify 应用程序中实现 OAuth 2.0/2.1 流程的问题，并指出了具体的用例，例如设置身份验证、调试令牌验证以及解决 RFC 合规性问题。",{"category":22,"check":27,"severity":24,"summary":28},"独特性","该 skill 提供了针对 OAuth 2.0/2.1 的具体 Fastify 集成模式，包括 PKCE、刷新令牌轮换和 JWT 验证，这超出了基础 LLM 在安全身份验证方面的能力。",{"category":22,"check":30,"severity":24,"summary":31},"生产就绪性","该 skill 为 Fastify 中的 OAuth 2.0/2.1 流程提供了完整的生命周期，包括设置、回调处理、令牌验证、路由保护和刷新令牌轮换，表明已准备好投入生产使用。",{"category":33,"check":34,"severity":24,"summary":35},"范围","单一职责原则","该 skill 专门关注 Fastify 应用程序中的 OAuth 2.0/2.1 授权流程，不扩展到一般测试或部署等无关领域。",{"category":33,"check":37,"severity":24,"summary":38},"描述质量","显示的描述准确而简洁地反映了 skill 的功能，包括与 Fastify 相关的特定 OAuth 流程和故障排除领域。",{"category":40,"check":41,"severity":42,"summary":43},"调用","作用域工具","not_applicable","这是一个 skill，而不是一个具有多个独立命令的基于工具的扩展。skill 的功能是作为一个整体被调用的。",{"category":45,"check":46,"severity":24,"summary":47},"文档","配置和参数参考","SKILL.md 提供了清晰的配置示例，包括客户端 ID、密钥、授权服务器详细信息和回调 URI 的环境变量，并概述了 callbackUri 等参数的验证检查点。",{"category":33,"check":49,"severity":42,"summary":50},"工具命名","这是一个 skill，而不是一个需要命名的多个独立命令的基于工具的扩展。",{"category":33,"check":52,"severity":24,"summary":53},"最小 I/O 表面","该 skill 的示例演示了与正在实现的 OAuth 流程直接相关的集中的输入（请求对象、令牌）和输出（重定向、用户数据、新令牌）。",{"category":55,"check":56,"severity":24,"summary":57},"许可证","许可证可用性","该扩展包含标准的 MIT 许可证文件，该文件是宽松且广泛可用的。",{"category":59,"check":60,"severity":24,"summary":61},"维护","提交时效性","存储库显示了最近的提交，最后一次提交在 2026 年 4 月 17 日，表明维护活跃。",{"category":59,"check":63,"severity":64,"summary":65},"依赖项管理","warning","虽然在安装示例中列出了依赖项，但没有明确提到锁定文件或像 Dependabot 这样的自动化依赖项更新机制，也没有进行漏洞扫描。",{"category":67,"check":68,"severity":24,"summary":69},"安全","秘密管理","该 skill 使用环境变量来存储敏感凭证（CLIENT_ID、CLIENT_SECRET、AUTH_SERVER、CALLBACK_URI），并明确警告不要记录原始令牌，表明处理得当。",{"category":67,"check":71,"severity":24,"summary":72},"注入","该 skill 专注于在 Fastify 中配置和集成 OAuth 流程，没有迹象表明加载或执行不受信任的第三方数据作为指令。",{"category":67,"check":74,"severity":24,"summary":75},"传递式供应链炸弹","该 skill 依赖于 npm 包和标准的 Fastify 插件，没有证据表明运行时从远程 URL 获取代码或指令。",{"category":67,"check":77,"severity":24,"summary":78},"沙盒隔离","该 skill 的操作涉及配置应用程序逻辑和管理令牌，而不是修改项目外部的文件或执行任意系统命令。",{"category":67,"check":80,"severity":24,"summary":81},"沙盒逃逸原语","该 skill 提供的代码示例不包含分离的进程启动或对被拒绝的工具调用的重试循环。",{"category":67,"check":83,"severity":24,"summary":84},"数据泄露","该 skill 专注于管理 OAuth 令牌和应用程序配置，没有证据表明有指令读取或向第三方提交机密数据。",{"category":67,"check":86,"severity":24,"summary":87},"隐藏文本技巧","捆绑的内容和描述没有隐藏的操纵技巧、Unicode 标签或其他混淆方法。",{"category":89,"check":90,"severity":24,"summary":91},"钩子","不透明代码执行","提供的代码示例是标准的 TypeScript 和 JavaScript，没有混淆、base64 载荷或运行时代码获取。",{"category":93,"check":94,"severity":24,"summary":95},"可移植性","结构假设","安装说明指定了 npm 依赖项并提供了 TypeScript 示例，假设了一个 Node.js/Fastify 项目结构，这一点已明确声明。",{"category":97,"check":98,"severity":24,"summary":99},"信任","问题关注度","在过去的 90 天里，打开了 4 个问题并关闭了 4 个，闭合率为 50%，开放问题数量很少。",{"category":101,"check":102,"severity":64,"summary":103},"版本控制","发布管理","存储库未在 SKILL.md 前置元数据中明确声明版本，也未使用 GitHub 发布标签。安装说明指向 `HEAD`，使得版本固定变得困难。",{"category":105,"check":106,"severity":24,"summary":107},"代码执行","验证","该 skill 的示例和文档强调了对 `callbackUri` 和 JWT 声明（exp、iss、aud）等关键参数的验证，符合安全编码实践。",{"category":67,"check":109,"severity":24,"summary":110},"无保护的破坏性操作","该 skill 专注于配置和令牌管理，不涉及文件删除或系统更改等破坏性操作。",{"category":105,"check":112,"severity":24,"summary":113},"错误处理","提供的代码片段显示了对 JWT 验证和令牌交换的强大错误处理，包括结构化的错误响应和清晰的消息。",{"category":105,"check":115,"severity":24,"summary":116},"日志记录","该 skill 明确警告不要记录原始令牌，并专注于安全处理，暗示了对敏感信息日志记录的负责任方法。",{"category":118,"check":119,"severity":42,"summary":120},"合规性","GDPR","该 skill 处理身份验证令牌和应用程序配置，不直接处理需要 GDPR 特定清理（超出标准安全实践）的个人数据。",{"category":118,"check":122,"severity":24,"summary":123},"目标市场","该 skill 专注于在 Fastify 中实现 OAuth 2.0/2.1 流程的技术实现，没有明显的区域或司法限制；targetMarket 为 'global'。",{"category":93,"check":125,"severity":24,"summary":126},"运行时稳定性","该 skill 使用 TypeScript 编写，并依赖于标准的 npm 包和 Fastify，使其在 Node.js 环境中具有可移植性。",{"category":45,"check":128,"severity":24,"summary":129},"README","存储库包含一个 README 文件，其中清楚地列出了可用的 skill 并提供了通用用法说明。",{"category":33,"check":131,"severity":42,"summary":132},"工具表面积","这是一个具有单一主要功能的 skill，而不是多个工具的集合。",{"category":40,"check":134,"severity":42,"summary":135},"重叠的近义词工具","作为一个 skill，它不公开多个名称可能重叠的独立工具。",{"category":45,"check":137,"severity":24,"summary":138},"虚假功能","所有宣传的功能，如 PKCE、刷新令牌轮换和 JWT 验证，都通过 SKILL.md 中的代码示例和解释得到了证明。",{"category":140,"check":141,"severity":24,"summary":142},"安装","安装说明","SKILL.md 提供了清晰、可复制粘贴的 npm 安装命令以及用于注册和使用 OAuth 插件的详细 TypeScript 代码示例。",{"category":144,"check":145,"severity":24,"summary":146},"错误","可操作的错误消息","SKILL.md 中的错误处理示例提供了特定的错误代码（例如，'token_expired'、'invalid_issuer'）和描述，说明了失败的原因和方式。",{"category":148,"check":149,"severity":64,"summary":150},"执行","固定依赖项","安装说明列出了依赖项，但未包含锁定文件（例如 `package-lock.json`）以确保可重现的构建和固定的版本。",{"category":33,"check":152,"severity":42,"summary":153},"试运行预览","该 skill 的操作主要是配置和令牌处理，而不是需要试运行预览的状态更改命令。",{"category":155,"check":156,"severity":42,"summary":157},"协议","幂等重试和超时","该 skill 的核心操作不涉及远程调用或状态更改操作，这些操作在此上下文中需要幂等性或硬超时。",{"category":118,"check":159,"severity":24,"summary":160},"遥测选择加入","在 skill 的文档或示例中没有遥测收集的证据；假定它是选择加入的或不存在的。",{"category":40,"check":162,"severity":24,"summary":163},"精确目的","描述清楚地说明了该 skill 在 Fastify 中实现了 OAuth 2.0/2.1 流程，指出了具体功能，并列出了精确的用例和故障排除场景，定义了其目的和边界。",{"category":40,"check":165,"severity":24,"summary":166},"简洁的前置元数据","前置元数据简洁，名称、描述和元数据标签清楚地定义了 skill 的核心功能和目的，以便进行精确路由。",{"category":45,"check":168,"severity":24,"summary":169},"简洁的正文","SKILL.md 结构良好，具有清晰的章节和代码示例，行数适中，如有必要，会将更深入的材料委托给外部文件。",{"category":171,"check":172,"severity":24,"summary":173},"上下文","渐进披露","SKILL.md 概述了主要的授权码流程，并提供了指向其他潜在实现细节的链接，如 DEVICE_FLOW.md、TOKEN_VALIDATION.md 等，展示了渐进披露。",{"category":171,"check":175,"severity":42,"summary":176},"分支探索","该 skill 不是一个探索或审计风格的 skill；它专注于直接实现和配置任务。",{"category":22,"check":178,"severity":24,"summary":179},"用法示例","SKILL.md 提供了全面的端到端代码示例，用于安装依赖项、注册 OAuth 插件、处理回调、JWT 验证、路由保护和刷新令牌轮换，这些示例看起来都可用。",{"category":22,"check":181,"severity":24,"summary":182},"边缘情况","该 skill 记录了重定向 URI、JWT 声明（exp、iss、aud）的验证检查点，并提到了常见的反模式，解决了潜在的故障模式和限制。",{"category":105,"check":184,"severity":42,"summary":185},"工具回退","该 skill 似乎不依赖于外部 MCP 工具或需要回退的服务；它使用标准的 npm 包。",{"category":93,"check":187,"severity":24,"summary":188},"意外状态下停止","该 skill 的代码示例和文档隐含地假设了正确的 Fastify 项目设置和有效的 OAuth 服务器配置，并通过验证检查来处理意外状态，如令牌过期或无效颁发者。",{"category":93,"check":190,"severity":24,"summary":191},"跨 skill 耦合","该 skill 是独立的，专注于 Fastify 和 OAuth 实现，并且似乎不隐式依赖于在同一会话中加载的其他特定 skill。",1778693076093,"该 skill 提供了详细的说明和代码示例，用于将 OAuth 2.0/2.1 授权流程集成到 Fastify 应用程序中，涵盖 PKCE、刷新令牌轮换、JWT 验证和路由保护。",[195,196,197,198,199],"配置 PKCE 授权码","支持客户端凭证和设备流","实现刷新令牌轮换","处理 JWT 验证和令牌内省","使用 OAuth 中间件保护 Fastify 路由",[201,202,203],"实现一个功能齐全的 OAuth 2.0 授权服务器","为非 Node.js 环境提供客户端 OAuth 库","处理 Fastify 功能之外的低级网络传输细节","3.0.0","4.4.0","使开发人员能够在 Fastify 应用程序中安全地实现和管理 OAuth 2.0/2.1 授权流程，涵盖各种授权类型和安全最佳实践。","由于文档全面、示例清晰且安全实践得力，因此得分很高。对依赖项固定和发布管理的轻微警告阻止了满分。",96,"一个文档齐全且安全的 skill，用于在 Fastify 应用程序中实现 OAuth 2.0/2.1 流程。",[13,211,212,213,214,215,216],"oauth2","security","authentication","authorization","jwt","fastify","community",[219,220,221,222],"在 Fastify 中设置身份验证和登录流程","使用 OAuth 访问令牌保护 API 路由","对令牌验证错误和 RFC 合规性进行故障排除","使用 OAuth 2.1 实现安全 API 安全模式",{"codeQuality":224,"collectedAt":226,"documentation":227,"maintenance":230,"security":235,"testCoverage":237},{"hasLockfile":225},false,1778693055588,{"descriptionLength":228,"readmeSize":229},530,1400,{"closedIssues90d":231,"forks":232,"hasChangelog":225,"openIssues90d":231,"pushedAt":233,"stars":234},4,135,1776438002000,1792,{"hasNpmPackage":225,"license":236,"smitheryVerified":225},"MIT",{"hasCi":238,"hasTests":238},true,{"updatedAt":240},1778693237705,{"basePath":242,"githubOwner":243,"githubRepo":244,"locale":18,"slug":13,"type":245},"skills/oauth","mcollina","skills","skill",null,{"evaluate":248,"extract":251},{"promptVersionExtension":204,"promptVersionScoring":205,"score":208,"tags":249,"targetMarket":250,"tier":217},[13,211,212,213,214,215,216],"global",{"commitSha":252},"HEAD",{"repoId":254,"translatedFrom":255},"kd7e22d93dm7xdjcrsgq33f53d86mqm7","k178pfdms9rr9k6j1b00f52n8s86myav",{"_creationTime":257,"_id":254,"identity":258,"providers":259,"workflow":358},1778692902463.346,{"githubOwner":243,"githubRepo":244,"sourceUrl":14},{"classify":260,"discover":352,"github":355},{"commitSha":252,"extensions":261},[262,274,282,290,298,306,314,320,328,336,344],{"basePath":263,"description":264,"displayName":265,"installMethods":266,"rationale":267,"selectedPaths":268,"source":272,"sourceLanguage":273,"type":245},"skills/documentation","Creates, structures, and reviews technical documentation following the Diátaxis framework (tutorials, how-to guides, reference, and explanation pages). Use when a user needs to write or reorganize docs, structure a tutorial vs. a how-to guide, build reference docs or API documentation, create explanation pages, choose between Diátaxis documentation types, or improve existing documentation structure. Trigger terms include: documentation structure, Diátaxis, tutorials vs how-to guides, organize docs, user guide, reference docs, technical writing.","documentation",{"claudeCode":12},"SKILL.md frontmatter at skills/documentation/SKILL.md",[269],{"path":270,"priority":271},"SKILL.md","mandatory","rule","en",{"basePath":275,"description":276,"displayName":277,"installMethods":278,"rationale":279,"selectedPaths":280,"source":272,"sourceLanguage":273,"type":245},"skills/fastify","Guides development of Fastify Node.js backend servers and REST APIs using TypeScript or JavaScript. Use when building, configuring, or debugging a Fastify application — including defining routes, implementing plugins, setting up JSON Schema validation, handling errors, optimising performance, managing authentication, configuring CORS and security headers, integrating databases, working with WebSockets, and deploying to production. Covers the full Fastify request lifecycle (hooks, serialization, logging with Pino) and TypeScript integration via strip types. Trigger terms: Fastify, Node.js server, REST API, API routes, backend framework, fastify.config, server.ts, app.ts.","fastify-best-practices",{"claudeCode":12},"SKILL.md frontmatter at skills/fastify/SKILL.md",[281],{"path":270,"priority":271},{"basePath":283,"description":284,"displayName":285,"installMethods":286,"rationale":287,"selectedPaths":288,"source":272,"sourceLanguage":273,"type":245},"skills/init","Creates, updates, or optimizes an AGENTS.md file for a repository with minimal, high-signal instructions covering non-discoverable coding conventions, tooling quirks, workflow preferences, and project-specific rules that agents cannot infer from reading the codebase. Use when setting up agent instructions or Claude configuration for a new repository, when an existing AGENTS.md is too long, generic, or stale, when agents repeatedly make avoidable mistakes, or when repository workflows have changed and the agent configuration needs pruning. Applies a discoverability filter—omitting anything Claude can learn from README, code, config, or directory structure—and a quality gate to verify each line remains accurate and operationally significant.","init",{"claudeCode":12},"SKILL.md frontmatter at skills/init/SKILL.md",[289],{"path":270,"priority":271},{"basePath":291,"description":292,"displayName":293,"installMethods":294,"rationale":295,"selectedPaths":296,"source":272,"sourceLanguage":273,"type":245},"skills/linting-neostandard-eslint9","Configures ESLint v9 flat config and neostandard for JavaScript and TypeScript projects, including migrating from legacy `.eslintrc*` files or the `standard` package. Use when you need to set up or fix linting with `eslint.config.js` or `eslint.config.mjs`, troubleshoot lint errors, configure neostandard rules, migrate from `.eslintrc` to flat config, or integrate linting into CI pipelines and pre-commit hooks.","linting-neostandard-eslint9",{"claudeCode":12},"SKILL.md frontmatter at skills/linting-neostandard-eslint9/SKILL.md",[297],{"path":270,"priority":271},{"basePath":299,"description":300,"displayName":301,"installMethods":302,"rationale":303,"selectedPaths":304,"source":272,"sourceLanguage":273,"type":245},"skills/node","Provides domain-specific best practices for Node.js development with TypeScript, covering type stripping, async patterns, error handling, streams, modules, testing, performance, caching, logging, and more. Use when setting up Node.js projects with native TypeScript support, configuring type stripping (--experimental-strip-types), writing Node 22+ TypeScript without a build step, or when the user mentions 'native TypeScript in Node', 'strip types', 'Node 22 TypeScript', '.ts files without compilation', 'ts-node alternative', or needs guidance on error handling, graceful shutdown, flaky tests, profiling, or environment configuration in Node.js. Helps configure tsconfig.json for type stripping, set up package.json scripts, handle module resolution and import extensions, and apply robust patterns across the full Node.js stack.","node",{"claudeCode":12},"SKILL.md frontmatter at skills/node/SKILL.md",[305],{"path":270,"priority":271},{"basePath":307,"description":308,"displayName":309,"installMethods":310,"rationale":311,"selectedPaths":312,"source":272,"sourceLanguage":273,"type":245},"skills/nodejs-core","Debugs native module crashes, optimizes V8 performance, configures node-gyp builds, writes N-API/node-addon-api bindings, and diagnoses libuv event loop issues in Node.js. Use when working with C++ addons, native modules, binding.gyp, node-gyp errors, segfaults, memory leaks in native code, V8 optimization/deoptimization, libuv thread pool tuning, N-API or NAN bindings, build system failures, or any Node.js internals below the JavaScript layer.","nodejs-core",{"claudeCode":12},"SKILL.md frontmatter at skills/nodejs-core/SKILL.md",[313],{"path":270,"priority":271},{"basePath":242,"description":315,"displayName":13,"installMethods":316,"rationale":317,"selectedPaths":318,"source":272,"sourceLanguage":273,"type":245},"Implements OAuth 2.0/2.1 authorization flows in Fastify applications — configures authorization code with PKCE, client credentials, device flow, refresh token rotation, JWT validation, and token introspection/revocation endpoints. Use when setting up authentication, authorization, login flows, access tokens, API security, or securing Fastify routes with OAuth; also applies when troubleshooting token validation errors, mismatched redirect URIs, CSRF issues, scope problems, or RFC 6749/6750/7636/8252/8628 compliance questions.",{"claudeCode":12},"SKILL.md frontmatter at skills/oauth/SKILL.md",[319],{"path":270,"priority":271},{"basePath":321,"description":322,"displayName":323,"installMethods":324,"rationale":325,"selectedPaths":326,"source":272,"sourceLanguage":273,"type":245},"skills/octocat","Use this skill whenever the prompt contains any `github.com` URL, even if the user only pastes a link and gives no GitHub-specific keywords. Handles git and GitHub operations using the gh CLI. Triggers include any GitHub link to an issue, pull request, commit, compare page, Actions run, release, discussion, or repository. Covers creating and reviewing PRs, watching CI checks, interactive rebasing, branch cleanup, submodule management, and repository archaeology with git log/blame/bisect.","octocat",{"claudeCode":12},"SKILL.md frontmatter at skills/octocat/SKILL.md",[327],{"path":270,"priority":271},{"basePath":329,"description":330,"displayName":331,"installMethods":332,"rationale":333,"selectedPaths":334,"source":272,"sourceLanguage":273,"type":245},"skills/skill-optimizer","Optimizes AI skills for activation, clarity, and cross-model reliability. Use when creating or editing skill packs, diagnosing weak skill uptake, reducing regressions, tuning instruction salience, improving examples, shrinking context cost, or setting benchmark/release gates for skills. Trigger terms: skill optimization, activation gap, benchmark skill, with/without skill delta, regression, context budget, prompt salience.","skill-optimizer",{"claudeCode":12},"SKILL.md frontmatter at skills/skill-optimizer/SKILL.md",[335],{"path":270,"priority":271},{"basePath":337,"description":338,"displayName":339,"installMethods":340,"rationale":341,"selectedPaths":342,"source":272,"sourceLanguage":273,"type":245},"skills/snipgrapher","Configures and uses snipgrapher to generate polished code snippet images, including syntax-highlighted PNGs, SVGs, and WebP exports with custom themes, profiles, and styling options. Use when the user wants to create code screenshots, turn code into shareable images, generate pretty code snippets for docs or social posts, produce syntax-highlighted images from source files, or explicitly mentions snipgrapher. Supports single-file renders, batch jobs, watch mode, and reusable named profiles via the snipgrapher CLI or npx.","snipgrapher",{"claudeCode":12},"SKILL.md frontmatter at skills/snipgrapher/SKILL.md",[343],{"path":270,"priority":271},{"basePath":345,"description":346,"displayName":347,"installMethods":348,"rationale":349,"selectedPaths":350,"source":272,"sourceLanguage":273,"type":245},"skills/typescript-magician","Designs complex generic types, refactors `any` types to strict alternatives, creates type guards and utility types, and resolves TypeScript compiler errors. Use when the user asks about TypeScript (TS) types, generics, type inference, type guards, removing `any` types, strict typing, type errors, `infer`, `extends`, conditional types, mapped types, template literal types, branded/opaque types, or utility types like `Partial`, `Record`, `ReturnType`, and `Awaited`.","typescript-magician",{"claudeCode":12},"SKILL.md frontmatter at skills/typescript-magician/SKILL.md",[351],{"path":270,"priority":271},{"sources":353},[354],"manual",{"closedIssues90d":231,"description":356,"forks":232,"license":236,"openIssues90d":231,"pushedAt":233,"readmeSize":229,"stars":234,"topics":357},"My own collection of skills for modern Node.js development",[],{"classifiedAt":359,"discoverAt":360,"extractAt":361,"githubAt":361,"updatedAt":359},1778692906090,1778692902463,1778692904308,[213,214,216,215,13,211,212],{"evaluatedAt":364,"extractAt":365,"updatedAt":240},1778693076229,1778692906303,[],[368,400,428,448,469,495],{"_creationTime":369,"_id":370,"community":371,"display":372,"identity":378,"providers":383,"relations":393,"tags":396,"workflow":397},1778682677410.0369,"k172a96fyh4jrhrb5qc6tfrbp986nrey",{"reviewCount":8},{"description":373,"installMethods":374,"name":376,"sourceUrl":377},"Use when adding Auth0 token validation to Express or Node.js APIs - integrates express-oauth2-jwt-bearer SDK to protect Node.js API endpoints with JWT Bearer authentication, scope-based RBAC, claim validation, and optional DPoP support",{"claudeCode":375},"auth0/agent-skills","Auth0 Express OAuth2 JWT Bearer","https://github.com/auth0/agent-skills",{"basePath":379,"githubOwner":380,"githubRepo":381,"locale":273,"slug":382,"type":245},"plugins/auth0/skills/express-oauth2-jwt-bearer","auth0","agent-skills","express-oauth2-jwt-bearer",{"evaluate":384,"extract":391},{"promptVersionExtension":204,"promptVersionScoring":205,"score":385,"tags":386,"targetMarket":250,"tier":390},100,[380,215,213,387,388,212,389],"express","nodejs","api","verified",{"commitSha":252,"license":392},"Apache-2.0",{"parentExtensionId":394,"repoId":395},"k17b52m0t4j5ryyvea95kdqqr186nk9e","kd7d2wx4927yddhxgfpzw6t10x86m349",[389,380,213,387,215,388,212],{"evaluatedAt":398,"extractAt":399,"updatedAt":398},1778683411304,1778682677410,{"_creationTime":401,"_id":402,"community":403,"display":404,"identity":410,"providers":414,"relations":421,"tags":424,"workflow":425},1778699018122.7969,"k17a7mddxxkree1xx6sjwpxhw586njjn",{"reviewCount":8},{"description":405,"installMethods":406,"name":408,"sourceUrl":409},"Master authentication and authorization patterns including JWT, OAuth2, session management, and RBAC to build secure, scalable access control systems. Use when implementing auth systems, securing APIs, or debugging security issues.",{"claudeCode":407},"wshobson/agents","auth-implementation-patterns","https://github.com/wshobson/agents",{"basePath":411,"githubOwner":412,"githubRepo":413,"locale":273,"slug":408,"type":245},"plugins/developer-essentials/skills/auth-implementation-patterns","wshobson","agents",{"evaluate":415,"extract":420},{"promptVersionExtension":204,"promptVersionScoring":205,"score":416,"tags":417,"targetMarket":250,"tier":390},98,[213,214,212,215,211,418,388,419],"rbac","typescript",{"commitSha":252},{"parentExtensionId":422,"repoId":423},"k171jexrpw54f9844mnfyra04586mvfk","kd74de64zj0axtg5b8t7eqqe2x86nske",[213,214,215,388,211,418,212,419],{"evaluatedAt":426,"extractAt":427,"updatedAt":426},1778701079365,1778699018122,{"_creationTime":429,"_id":430,"community":431,"display":432,"identity":436,"providers":438,"relations":444,"tags":445,"workflow":446},1778682677410.035,"k17a8h3wj2pvee6cykczjfvb7d86n9we",{"reviewCount":8},{"description":433,"installMethods":434,"name":435,"sourceUrl":377},"Use when implementing Auth0 authentication in Nuxt 3/4 applications, configuring session management, protecting routes with middleware, or integrating API access tokens - provides setup patterns, composable usage, and security best practices for the @auth0/auth0-nuxt SDK",{"claudeCode":375},"auth0-nuxt",{"basePath":437,"githubOwner":380,"githubRepo":381,"locale":273,"slug":435,"type":245},"plugins/auth0/skills/auth0-nuxt",{"evaluate":439,"extract":443},{"promptVersionExtension":204,"promptVersionScoring":205,"score":385,"tags":440,"targetMarket":250,"tier":390},[380,441,213,442,419,212],"nuxt","web",{"commitSha":252},{"parentExtensionId":394,"repoId":395},[380,213,441,212,419,442],{"evaluatedAt":447,"extractAt":399,"updatedAt":447},1778683222653,{"_creationTime":449,"_id":450,"community":451,"display":452,"identity":456,"providers":458,"relations":465,"tags":466,"workflow":467},1778682677410.034,"k174gmqbt8gyvhspqhe1hq0ems86ngmb",{"reviewCount":8},{"description":453,"installMethods":454,"name":455,"sourceUrl":377},"Use when adding Auth0 login, logout, and callback handling to Java Servlet web applications - integrates com.auth0:mvc-auth-commons SDK for server-side Java apps using javax.servlet with session-based authentication. Triggers on AuthenticationController, AuthorizeUrl, Tokens, IdentityVerificationException, Java MVC auth.",{"claudeCode":375},"auth0-java-mvc-common",{"basePath":457,"githubOwner":380,"githubRepo":381,"locale":273,"slug":455,"type":245},"plugins/auth0/skills/auth0-java-mvc-common",{"evaluate":459,"extract":464},{"promptVersionExtension":204,"promptVersionScoring":205,"score":385,"tags":460,"targetMarket":250,"tier":390},[380,461,462,213,211,463],"java","servlet","oidc",{"commitSha":252},{"parentExtensionId":394,"repoId":395},[380,213,461,211,463,462],{"evaluatedAt":468,"extractAt":399,"updatedAt":468},1778683121234,{"_creationTime":470,"_id":471,"community":472,"display":473,"identity":479,"providers":483,"relations":489,"tags":491,"workflow":492},1778683190010.2632,"k176t0s8p9te0tavvt1rj207wx86nrhg",{"reviewCount":8},{"description":474,"installMethods":475,"name":477,"sourceUrl":478},"Better Auth authentication flows for TypeScript apps. Use when enabling email/password auth, configuring social providers, or implementing sign-up, sign-in, and verification flows.",{"claudeCode":476},"bobmatnyc/claude-mpm-skills","better-auth-authentication","https://github.com/bobmatnyc/claude-mpm-skills",{"basePath":480,"githubOwner":481,"githubRepo":482,"locale":273,"slug":477,"type":245},"toolchains/platforms/auth/better-auth/better-auth-authentication","bobmatnyc","claude-mpm-skills",{"evaluate":484,"extract":488},{"promptVersionExtension":204,"promptVersionScoring":205,"score":485,"tags":486,"targetMarket":250,"tier":390},99,[419,213,212,214,487],"web-development",{"commitSha":252},{"repoId":490},"kd72g55e5qeqs90bk1bvkt8wbx86nkn3",[213,214,212,419,487],{"evaluatedAt":493,"extractAt":494,"updatedAt":493},1778684330269,1778683190010,{"_creationTime":496,"_id":497,"community":498,"display":499,"identity":505,"providers":509,"relations":515,"tags":517,"workflow":518},1778683070339.0771,"k17crp24t9yc2371wvg8k6b5v586majg",{"reviewCount":8},{"description":500,"installMethods":501,"name":503,"sourceUrl":504},"Add authentication with Better Auth (TypeScript). Use for email/password, OAuth providers (Google, GitHub), 2FA/MFA, passkeys/WebAuthn, sessions, RBAC, rate limiting.",{"claudeCode":502},"binjuhor/shadcn-lar","better-auth","https://github.com/binjuhor/shadcn-lar",{"basePath":506,"githubOwner":507,"githubRepo":508,"locale":273,"slug":503,"type":245},".claude/skills/better-auth","binjuhor","shadcn-lar",{"evaluate":510,"extract":514},{"promptVersionExtension":204,"promptVersionScoring":205,"score":485,"tags":511,"targetMarket":250,"tier":390},[213,214,419,13,212,512,513],"webauthn","2fa",{"commitSha":252},{"repoId":516},"kd7b04jshnqyx91sq3jrqtm56s86mmmq",[513,213,214,13,212,419,512],{"evaluatedAt":519,"extractAt":520,"updatedAt":519},1778683120562,1778683070339]