security-compliance

Turtlestack

A plugin marketplace for Claude Code. Agents, skills, rules, and conventions that work together as a virtual team.

• Quick start
  • Customisation
  • JSON shortcut
  • Bootstrap a project
• Thinking and learning
• Plugins
  • Practices
    • Coding Standards
    • Plugin Curator
    • Security Compliance
    • Technology Stacks
    • Thinking
    • Tooling
    • Writing Style
  • Research
    • Analyst
    • Investigator
  • Leadership
    • Coordinator
    • CPO
    • CTO
    • GRC Lead
  • Product
    • Customer Success
    • Developer Docs Writer
    • GTM
    • Internal Docs Writer
    • Product Owner
    • Support
    • UI Designer
    • User Docs Writer
    • UX Researcher
  • Engineering
    • AI Engineer
    • Architect
    • Code Reviewer
    • Data Engineer
    • DevOps
    • .NET Developer
    • Performance Engineer
    • Python Developer
    • QA Engineer
    • QA Lead
    • React Developer
    • Release Manager
    • Security Engineer
    • Workflow Tools
• Under the hood
  • How rules and skills work
  • The learning system (technical detail)
  • Evaluation framework
  • Creating a new plugin
  • Troubleshooting
• Complementary plugins
• Acknowledgements

Quick start

1. Add the marketplace

/plugin marketplace add hpsgd/turtlestack

2. Install what you need

Start with the core plugins (rules, thinking skills, and code review), then add agents for your stack:

/plugin install coding-standards@hpsgd
/plugin install writing-style@hpsgd
/plugin install security-compliance@hpsgd
/plugin install thinking@hpsgd
/plugin install tooling@hpsgd
/plugin install code-reviewer@hpsgd
/plugin install ai-engineer@hpsgd

Add a technology stack if relevant:

/plugin install dotnet-stack@hpsgd
/plugin install nextjs-stack@hpsgd
/plugin install python-stack@hpsgd

Then reload:

/reload-plugins

Browse the full plugin list below to see what else is available.

Customisation

Per-project overrides. Create your own .claude/rules/ files. Project-level rules take precedence over marketplace rules.

Disabling a plugin. Set it to false in .claude/settings.json:

{
  "enabledPlugins": {
    "writing-style@hpsgd": false
  }
}

Local overrides (not committed). Use .claude/settings.local.json for personal preferences that shouldn't affect the team.

JSON shortcut

{
  "enabledPlugins": {
    "coding-standards@hpsgd": true,
    "writing-style@hpsgd": true,
    "security-compliance@hpsgd": true,
    "thinking@hpsgd": true,
    "tooling@hpsgd": true,
    "code-reviewer@hpsgd": true,
    "dotnet-stack@hpsgd": true,
    "nextjs-stack@hpsgd": true,
    "python-stack@hpsgd": true,
    "plugin-curator@hpsgd": true,
    "coordinator@hpsgd": true,
    "cpo@hpsgd": true,
    "product-owner@hpsgd": true,
    "ui-designer@hpsgd": true,
    "ux-researcher@hpsgd": true,
    "user-docs-writer@hpsgd": true,
    "developer-docs-writer@hpsgd": true,
    "internal-docs-writer@hpsgd": true,
    "gtm@hpsgd": true,
    "support@hpsgd": true,
    "customer-success@hpsgd": true,
    "grc-lead@hpsgd": true,
    "cto@hpsgd": true,
    "architect@hpsgd": true,
    "react-developer@hpsgd": true,
    "dotnet-developer@hpsgd": true,
    "python-developer@hpsgd": true,
    "ai-engineer@hpsgd": true,
    "qa-lead@hpsgd": true,
    "qa-engineer@hpsgd": true,
    "release-manager@hpsgd": true,
    "performance-engineer@hpsgd": true,
    "devops@hpsgd": true,
    "security-engineer@hpsgd": true,
    "data-engineer@hpsgd": true,
    "analyst@hpsgd": true,
    "investigator@hpsgd": true,
    "workflow-tools@hpsgd": true
  }
}

Bootstrap a project

After installing plugins, scaffold your project with domain-specific docs:

/coordinator:bootstrap-project my-project