Claude Code Plugins

Autonomous repo auditor. Scans, triages, builds PoCs, opens fix PRs, and re-reviews — with sandboxed test execution.

Ensures open source packages are properly released on npm, tagged on GitHub, and have documentation sites.

Turns your corrections into enforceable hooks so Claude never repeats the same mistake. CLAUDE.md is a suggestion - hooks are the law.

Package management enforcement. Enforces exact versions, checks for outdated and vulnerable packages, prevents dependency bloat.

Deploy safety. Runs smoke tests, detects performance regressions, enforces test gates, and scaffolds CI pipelines.

Git workflow enforcement. Validates commits, enforces conventional commits, manages PRs, releases, and code review processes.

Infrastructure security. Covers nginx configuration, port exposure, environment sync, and server hardening audits.

Docker quality and safety. Enforces Dockerfile best practices, validates compose files, and blocks dangerous container commands.

Database safety guardrails. Prevents accidental data destruction, validates migrations, and catches dangerous SQL patterns.

Prevent secret leaks and block dangerous commands. Catches API keys, credentials, and tokens before they hit your codebase.

Code style enforcement. Manages comments, imports, file length, icon usage, TODO tracking, and library choices across your codebase.

C/C++ memory safety checks. Enforces smart pointers, safe string functions, RAII patterns, and catches common memory pitfalls.

Enforce Jest best practices. Proper mock typing with jest.mocked(), clean test structure, and reliable assertions.

Enforce React quality standards. Ensures accessibility, semantic HTML, proper component patterns, and blocks inline styles.

Enforce TypeScript quality standards. Catches any types, enforces named exports, blocks console.log in production code.

Create detailed Mermaid diagrams for architecture, flows, ERDs, and more. Analyses your codebase and generates accurate visual documentation.

Scaffold hardened MCP servers wrapping CLI tools. Generates secure, well-tested MCP server projects from any command-line tool.