AI-powered skill recommendations for automation tasks. Describe what you want to build, and get intelligent recommendations for skills and solutions.
npm install -g @youware-labs/youskillOr use directly with npx:
npx @youware-labs/youskill "describe what you want to automate"# Get recommendations
youskill "automate code reviews with structured feedback"
# Output as JSON
youskill "build a data pipeline" --json
# Login for higher rate limits
youskill login
# Check your rate limits
youskill status
# Logout
youskill logout# Code automation
youskill "automate code reviews with structured feedback"
# Data pipelines
youskill "build a data pipeline from Notion to a database"
# Testing
youskill "set up automated testing for my project"
# Integrations
youskill "sync data between two services"Returns curated solutions with:
- Solution title & description - What it does
- Required skills - GitHub links + install commands
- Trigger prompt - Ready-to-use prompt to start the workflow
- Comparison - Trade-offs between different approaches
Example Response
$ npx @youware-labs/youskill "How do I do a security review?"
Using user API key
📋 Summary
I recommend the **Comprehensive Code & API Security Audit** as the primary solution
for developers; it provides an end-to-end workflow from reconnaissance to verified
code fixes for application vulnerabilities. Use the **Host Hardening** solution for
a separate, infrastructure-level security pass.
━━━ Solution 1: Comprehensive Code & API Security Audit ━━━
A developer-focused security review that combines comprehensive codebase auditing
with specialized API endpoint checks. It follows a multi-phase process:
Reconnaissance, Vulnerability Hunting, Reporting, and Fix Verification.
📦 Required Skills:
security-review-audit by davidcjones79
Full codebase security audit with OWASP Top 10 guidance, language-specific patte...
https://github.com/davidcjones79/shelley-cli/tree/main/skills/security-review-audit
Install: npx add-skill https://github.com/davidcjones79/shelley-cli/tree/main/skills/security-review-audit
api-security-review by bobmatnyc
API security checklist for reviewing endpoints before deployment...
https://github.com/bobmatnyc/claude-mpm-skills/tree/main/toolchains/universal/security/api-review
Install: npx add-skill https://github.com/bobmatnyc/claude-mpm-skills/tree/main/toolchains/universal/security/api-review
💬 Trigger Prompt:
╭────────────────────────────────────────────────────────────────────────────────╮
│ │
│ Perform a comprehensive security review of this codebase. │
│ 1. Map all entry points and data flows. │
│ 2. Conduct an OWASP Top 10 audit for common vulnerabilities (SQLi, XSS). │
│ 3. Review all API endpoints for authentication and input validation. │
│ 4. Provide a prioritized report with findings and suggested code fixes. │
│ │
╰────────────────────────────────────────────────────────────────────────────────╯
━━━ Solution 2: Host Hardening & Infrastructure Audit ━━━
An infrastructure-focused approach that assesses and hardens the host environment
where your application runs.
📦 Required Skills:
healthcheck by openclaw
Host security hardening and risk-tolerance configuration...
https://github.com/openclaw/openclaw/tree/main/skills/healthcheck
Install: npx add-skill https://github.com/openclaw/openclaw/tree/main/skills/healthcheck
💬 Trigger Prompt:
╭────────────────────────────────────────────────────────────────────────────────╮
│ │
│ Run a host security healthcheck and hardening audit. │
│ 1. Assess current OS security settings and listening ports. │
│ 2. Determine my risk tolerance (Home/Workstation vs VPS Hardened). │
│ 3. Generate a remediation plan for firewalls, SSH, and updates. │
│ 4. Guide me through the hardening process with explicit approval. │
│ │
╰────────────────────────────────────────────────────────────────────────────────╯
📊 Comparison
| Feature | Code & API Audit | Host Hardening |
| :--- | :--- | :--- |
| **Coverage** | Deep code analysis, OWASP Top 10, API endpoints | OS-level security, firewalls, SSH |
| **Complexity** | Moderate; requires manual verification | Low; guided interactive process |
| **Dependencies** | None (Static analysis) | Host access, firewall tools |
| User Type | Per Hour | Per Day |
|---|---|---|
| Anonymous (device) | 3 | 10 |
| Logged in | 10 | 50 |
Run youskill login to get higher limits.
┌─────────────────────────────────────────────────────────────────┐
│ YouSkill CLI │
├─────────────────────────────────────────────────────────────────┤
│ User Scenario → YouSkill API → AI-Powered Recommendations │
│ ↓ │
│ ┌────────┴────────┐ │
│ ↓ ↓ ↓ │
│ Keyword Semantic GitHub │
│ Search Search Fetcher │
│ └────────┬───────┘ │
│ ↓ │
│ ChromaDB │
│ (Vector DB + Metadata) │
└─────────────────────────────────────────────────────────────────┘
The CLI calls the YouSkill cloud service which uses:
- Semantic Search - Vector similarity via ChromaDB + Gemini embeddings
- Keyword Matching - Metadata filters for precise matches
- SKILL.md Analysis - Reads skill documentation from GitHub
# Install dependencies
npm install
# Build
npm run build
# Run locally
npm start "your scenario"
# Watch mode
npm run devsrc/
├── index.ts # CLI entry point
├── api.ts # API client
├── config.ts # Configuration management
├── machine-id.ts # Device fingerprinting
└── commands/
├── recommend.ts # Main recommendation command
├── login.ts # Login command
├── logout.ts # Logout command
└── status.ts # Status command
This repo includes a SKILL.md file that allows AI coding assistants (Claude Code, etc.) to discover and use this tool automatically.
MIT - See LICENSE
Contributions welcome! Please read the code of conduct first.
- Fork the repo
- Create a feature branch
- Make your changes
- Run
npm run typecheckto verify - Submit a PR
Built by YouWare Labs