Oauth plugins

Run multi-perspective code reviews across architecture, security, performance, and best practices, including git-based PR analysis with specialized agents for vulnerability scanning and architectural integrity.

Secure full-stack applications with API design patterns, authentication/authorization systems, backend/frontend coding practices, code review for vulnerabilities, and PCI DSS compliance guidance.

Automate RevOps and CRM workflows across HubSpot, Stripe, Shopify, Zendesk, SendGrid, Google Calendar, and Outlook Calendar — manage contacts, deals, orders, subscriptions, tickets, campaigns, and events without leaving Claude Code.

Build, debug, secure, deploy, and scale production Notion API integrations using 32 guided Claude Code skills: query/filter databases, manage pages/blocks, handle auth/errors/rate limits, optimize caching/performance, migrate data, set up CI/CD/observability, and ensure enterprise RBAC/compliance in TypeScript/Python/Node.js.

Build and optimize Next.js App Router apps: scaffold pages/layouts/components/API routes/server actions, implement authentication with Auth.js/Prisma/middleware, guide server/client components usage, and analyze/generate performance reports with recommendations.

Read, send, and manage Gmail messages; create and edit Google Docs, Sheets, and Slides; access and organize Drive files; manage Calendar events, Tasks, and Contacts; orchestrate Chat messages, Apps Script execution, and Custom Search via MCP tools from the command line or uvx.

Audit authentication in JavaScript, Python, and Java web apps/APIs against OWASP/NIST standards—covering password hashing, JWT handling, sessions, OAuth flows, MFA, and account controls. Validate project setups by checking credentials, tokens, and config files for errors and compliance status.

Integrate apps with Canva Connect API using 30 skills to generate TypeScript/Node.js code for OAuth PKCE auth, design creation/export workflows, asset uploads, webhook handling, rate limit management, security hardening, performance optimization, CI/CD deployment to Vercel/GCP, monitoring with Prometheus, and full-stack troubleshooting from local dev to production incidents.

Build, debug, secure, deploy, monitor, and scale HubSpot CRM API integrations using 30 specialized skills for authentication, workflows, webhooks, rate limiting, error diagnosis, CI/CD pipelines, performance tuning, and enterprise patterns in Node.js/TypeScript projects.

Integrate Procore REST API into Python apps for construction project management: authenticate with OAuth2, create/track RFIs and submittals, handle errors/rate limits/backoffs, manage multi-env setups, migrations, RBAC, webhooks, and production checklists.

Build production ClickUp API v2 integrations: authenticate via tokens/OAuth, manage tasks/workspaces/spaces/folders/lists with CRUD and custom fields, handle rate limits/errors/webhooks, optimize performance/costs/security, deploy to Vercel/GCP with CI/CD, monitor with Prometheus, and migrate data from Jira/Asana.

Accelerate Intercom API integrations in Node.js/TypeScript apps by generating code for contacts/conversations management, webhook/event handling, auth setup, CI/CD pipelines, local testing, production checklists, security hardening, rate limit retries, performance caching, observability instrumentation, cost optimization, data migrations, and incident response runbooks.

Build production Navan API integrations for travel bookings, expense management, and data syncing to ERPs/warehouses: automate OAuth auth setup, REST workflows, error debugging, CI/CD deployment, monitoring, security hardening, and webhook handling.

Accelerate Guidewire InsuranceSuite development by automating Cloud API integrations for PolicyCenter policy lifecycles, ClaimCenter claims processing, BillingCenter ops; CI/CD pipelines with Gradle/Gosu; error diagnosis/fixes; secure deployments; performance/cost tuning; production monitoring/incident response via 24 specialized skills.

Integrate Podium SaaS API into Node.js/TypeScript apps for two-way messaging, review requests, payments processing, and business workflows. Set up OAuth2 auth, handle REST calls, webhooks, rate limits, errors, retries, security, performance tuning, local dev, deployments, and migrations using proven patterns.

Build production SalesLoft API v2 integrations in TypeScript: authenticate via OAuth, manage prospects and cadences, track emails/calls/engagements, handle rate limits/errors/webhooks, test locally and in CI with Vitest/GitHub Actions, deploy to Vercel/GCP/AWS, and optimize performance/security using 18 ready skills.

Integrate Ramp's corporate card and expense management API into Python apps: issue and manage virtual cards with limits, fetch and filter transactions, sync expenses to accounting, handle OAuth2 authentication, rate limits, errors, webhooks, and multi-env setups via 24 ready skills.

Develop full Miro REST API v2 integrations: create board CRUD workflows, deploy to Vercel/Fly.io/Cloud Run with OAuth and webhooks, manage rate limits/performance/security, set up monitoring/CI/CD, migrate from v1, and handle enterprise RBAC/provisioning.

Integrate Workhuman Social Recognition API into apps for employee rewards, nominations, recognitions, and HRIS sync with Workday/SuccessFactors. Handle OAuth 2.0 auth, REST endpoints, webhooks, errors, rate limits, performance tuning, security, debugging, local dev, and production deployment via 18 specialized skills.

Build full Hootsuite API integrations for social media: authenticate via OAuth, upload media and schedule posts across profiles, retrieve engagement analytics, handle rate limits and errors, optimize performance with caching/batching, deploy to Vercel or Cloud Run with GitHub Actions CI/CD, secure tokens, and debug issues—all in TypeScript/Node.js or Python.

Delegate specialized AI agents to automate code reviews on git diffs, security audits for APIs and auth per OWASP, debugging of errors and incidents, test generation with Jest/pytest, performance profiling, and quality assurance across dev workflows.

Design scalable backend architectures including REST/GraphQL/OpenAPI APIs, server-side logic, database schemas with indexing and Redis caching, OAuth authentication/security, and microservices.

Administer Keycloak identity and access management with realm/client configuration, authentication flows, authorization policies, and security hardening, plus implement Keycloak.AuthServices .NET library for JWT/OIDC authentication, RBAC, and Admin REST API integration.

Run slash commands to perform security audits: scan dependencies for vulnerabilities and risks, review auth configs and inputs, generate severity-prioritized reports with remediations and code fixes, add secure authentication systems with MFA and RBAC, and automatically harden app configurations across encryption, headers, and infra.

Architect scalable backend systems by designing REST/GraphQL APIs with OpenAPI specs, implementing server-side logic, creating database schemas with indexing and Redis caching, setting up secure OAuth authentication, and planning microservices.

Architect scalable backend systems using a specialized AI agent: design REST/GraphQL/OpenAPI APIs with authentication and rate limiting, optimize database schemas via indexing and Redis caching, implement secure OAuth flows, build server-side logic, and structure microservices for robustness and performance.

Read, write, search, and surgically edit Obsidian notes, tags, and frontmatter via the Local REST API plugin, using either STDIO or Streamable HTTP transport.

Design and implement complex integrations for B2B applications with enterprise systems like Salesforce, HubSpot, Microsoft 365, Google Workspace, SAP, and Oracle ERP. Orchestrate external APIs, synchronize data across systems, manage webhooks, handle errors, and coordinate multi-system workflows using enterprise-grade patterns.

Guide SAP BTP CIAS workflows: set up subscriptions, configure destinations and roles like CIASIntegrationAdministrator, plan integration scenarios with S/4HANA, SuccessFactors, and BTP services, manage My Inbox tasks, monitor executions, troubleshoot errors, create OAuth2 instances, and configure identity providers and security.

Configure SAP BTP Master Data Integration to provision tenants, connect apps like S/4HANA, SuccessFactors, Ariba, and Fieldglass; define distribution models and SOAP APIs for business partners; enable One Domain Model, extensibility, Business Data Orchestration; secure with OAuth2 or mTLS; troubleshoot replication.

Configure SAP BTP connectivity to link cloud apps with on-premise systems by setting up destinations for HTTP, RFC, LDAP, TCP, MAIL; deploying Cloud Connector and Kubernetes/Kyma proxies; implementing OAuth, principal propagation, and multitenancy; plus troubleshoot errors like 405, 407, 503.

Architect scalable backend systems with an AI agent: design REST/GraphQL/OpenAPI APIs, database schemas with indexing and Redis caching, secure OAuth authentication, server-side logic, and microservices.

Design and implement integrations for B2B apps with enterprise systems like Salesforce, HubSpot, Microsoft 365, Google Workspace, SAP, and Oracle ERP. Orchestrate external APIs, synchronize data across systems, manage webhooks, handle errors, and coordinate multi-system workflows using enterprise-grade patterns.

Design and implement complex B2B enterprise system integrations, connecting platforms to Salesforce, HubSpot, Microsoft 365, Google Workspace, SAP, and Oracle ERP. Orchestrate external APIs, synchronize data bidirectionally, manage webhooks, coordinate multi-system workflows, and implement enterprise-grade error handling and patterns.

Build AI-powered applications using OpenRouter's API for 300+ models, including text generation, image/video creation, speech transcription/synthesis, and analytics. Scaffold TypeScript agents with TUI or headless modes, implement OAuth PKCE for browser auth, and query model pricing, latency, and performance.

Automate local SEO workflows: manage Google Business Profiles, audit citations, monitor reviews, track map pack rankings, generate client reports, and optimize for AI search visibility. Integrates with 10+ data tools via MCP.

Automate Duende Software docs lifecycle for IdentityServer, BFF, Access Token Management, IdentityModel, OidcClient: scrape sources, validate and rebuild indexes, perform keyword/NLP searches, resolve doc sections, and maintain searchable storage to accelerate authentication research.

Extract reusable coding skills and strategies from Claude Code sessions, then curate, evaluate, and iteratively improve them with human-in-the-loop feedback to build a personalized AI coding infrastructure.

Automate CLI processing of YouTube videos and channels (transcribe, upload, schedule, annotate into Markdown blogs), Zoom meeting transcripts, Twitter/X data (fetch likes/posts/follows, screenshot), ConvertKit newsletters, and media analysis/image generation with Google Gemini.

Delegate security engineering tasks to an AI agent that performs vulnerability assessments, fixes issues like SQL injection and XSS, implements authentication with OAuth/JWT and RBAC, protects PII, conducts threat modeling, code reviews, and ensures OWASP/GDPR compliance in your codebase.

Integrate security into AI development workflows with skills for fuzzing, static analysis, MCP server hardening, cryptography auditing, Kubernetes security, and supply chain verification.

Bootstrap Auth0 authentication by auto-detecting frameworks like React, Next.js, Vue, Angular, Express, or React Native; migrate user auth from Firebase, Cognito, Supabase, Clerk, or custom setups; enable MFA/2FA via TOTP, SMS, push, passkeys with step-up verification and adaptive risk-based auth for compliance.

Automate GDPR Records of Processing Activities (RoPA) workflows: generate from IT inventories like Active Directory/cloud catalogs/database schemas, create controller/processor records, audit completeness against CNIL/ICO/BfDI, assess exemptions, link to DPIAs, establish maintenance processes, build executive dashboards, and integrate with OneTrust/Collibra.

Audit codebases, PRs, staged changes, and dependencies for OWASP Top 10, CWE vulnerabilities, secrets, and CVEs; scan containers and supply chains; model threats with STRIDE/DREAD; implement secure auth patterns, crypto, zero-trust, and DevSecOps workflows.

Build Zoom platform integrations including REST APIs, Meeting/Video SDKs, OAuth authentication, webhooks, Team Chat bots, Phone CTI workflows, Contact Center, and real-time media streaming. Includes MCP servers for AI-agent access to Zoom meetings, whiteboards, chat, documentation, and revenue analytics.

Automate SecondMe platform interactions via Agent for login, profile management, chatting, Plaza posts, friend handling, Key Memory CRUD, discovery, and skill installs. Develop third-party apps with guided OAuth flows, MCP/API integrations, scaffolding, reviews, and hackathon submissions.

Design and implement scalable enterprise microservices architectures for distributed systems. Decompose monoliths using DDD/Strangler patterns, implement communication via REST/gRPC/events/sagas, deploy API gateways, orchestrate with Kubernetes, and add observability plus resilience.

Generate complete RESTful APIs, GraphQL schemas, and microservice architectures including code, OpenAPI documentation, validation, JWT/OAuth security, tests, and PostgreSQL database integration.

Implement secure authentication and authorization systems with JWT tokens, OAuth2 flows, refresh tokens, session management, bcrypt/Argon2 hashing, 2FA/MFA, SSO, RBAC, and best practices in TypeScript, JavaScript, and Express apps.

Design and implement enterprise API integrations for microservices and third-party services in B2B applications, using REST, GraphQL, gRPC, webhooks for connectivity, with authentication, data transformation, error handling, API gateways, service mesh, and monitoring to build scalable architectures.

Manage and automate YAML workflow playbooks for LLM agents via MCP, including storing, querying, and creating playbooks with built-in scaffolding, testing, deployment, and security auditing for MCP servers built on @cyanheads/mcp-ts-core.

Automate HaloPSA IT service management in Claude Code: create, search, update tickets; manage clients, assets, contracts; monitor SLAs and dashboards; add actions; query knowledge base.

Remotely manage Datto RMM endpoints with Claude: resolve alerts by UID or hostname, run quick PowerShell/Bash jobs on devices, list and filter site devices by status/alerts, audit hardware/software inventories, configure site variables, and access API patterns for OAuth/authenticated operations via skills and commands.

Run AI-guided, phase-chained penetration tests and bug bounty hunts: initialize targets, perform recon and subdomain enumeration, hunt secrets and API keys, test web/API vulns like SQLi/XSS/SSRF/race conditions/OAuth, audit cloud/AD infra misconfigs, exploit chains, triage findings with precision gating, and generate Markdown reports.

Follow sorah's coding guidelines for general code quality, Ruby, Rails, Rust, Terraform, security vulnerabilities, git commits, and Japanese docs while writing or reviewing code. Auto-generate styled git commits and GitHub PRs from changes. Perform security reviews and audits on code diffs, files, or repos via commands and agent.

Perform expert security code reviews on Rails and React applications using OAuth, assessing vulnerabilities, threat modeling, authentication, API security, cryptography, and delivering remediation guidance with secure implementation advice.

Run a local Python MCP server to connect Claude securely to Google Workspace via OAuth, enabling it to read/send Gmail emails, manage Drive files, edit Docs and Sheets, and handle Calendar events directly in your workflows.

Manage NinjaOne RMM platform for MSP IT operations: search and list devices by hostname/IP/organization, fetch hardware/software details and active alerts with severity filters, dismiss alerts, create/update tickets, control services, schedule maintenance, and monitor Windows/Mac/Linux endpoints via API skills, CLI commands, and remote MCP connection.

Build secure backend services by designing REST/GraphQL APIs, implementing OAuth/JWT authentication, integrating LLMs with RAG pipelines and prompt engineering, and conducting OWASP Top 10 security reviews with threat modeling and vulnerability fixes.

Enforce a complete TDD workflow in Claude Code: detect bugs and test gaps, refactor code smells, eliminate duplication, optimize performance, and review security threats — all with multi-cycle auto-fixing and parallel agent execution

Implement agentic commerce flows using the Universal Commerce Protocol across REST, MCP, A2A, and Embedded bindings, including checkout, orders, payments, fulfillment, discounts, identity linking, and autonomous agent payments.

Build and deploy CrowdStrike Falcon Foundry cybersecurity applications with full-stack support: React/Vue UI pages, serverless Go/Python functions, NoSQL collections, Falcon API integration, OAuth/RBAC security, SOAR workflows, Playwright testing, and CLI lifecycle management.

Run comprehensive multi-dimensional code reviews across architecture, security, performance, and best practices, generating structured reports and enhanced PR descriptions from git changes

Administer Microsoft 365 tenants via Claude skills and commands: audit users, licenses, MFA status, mailboxes, Teams, OneDrive files, and security posture using Graph API. Automate offboarding workflows, diagnose issues, and export reports for MSP optimization.

Manage Sherweb MSP operations in Claude: fetch billing summaries and charge details by period or customer, list customers with AR balances, check subscription statuses and renewals, and adjust seat/license quantities with validation and confirmation via API tools and commands.

Manage Checkpoint Harmony Email (Avanan) security via API: triage incidents and threats with IOC extraction, tune DLP/anti-phishing/malware policies, search/release quarantined emails in bulk, and perform threat/policy queries using skills, commands, and remote MCP server.

Automate QuickBooks Online accounting for MSPs by connecting via OAuth to create/send invoices, manage customers/expenses/payments, generate financial reports like P&L and balance sheets, query balances, and summarize expenses using API skills and CLI commands.

Configure and manage Duende IdentityServer deployments in ASP.NET Core — OAuth/OIDC flows, token management, BFF security patterns, client/scope setup, signing keys, store customization, and production hardening

Manage Spotify ad campaigns through natural language — create and clone campaigns, ad sets, and ads, adjust budgets and targeting, pull performance reports and health checks, and export data to CSV, all via the Spotify Ads API with OAuth handling.

Analyze executive director responsibilities for trade associations and nonprofits, score automation potential with a 6-factor algorithm, generate production-ready LangGraph workflows with agents, and deploy to dev/staging/production environments with monitoring and rollback.

Run a local MCP server via npx to create, validate, upload, and manage Romanian e-invoices through authenticated access to ANAF e-Factura APIs directly from Claude Code. Set up with your ANAF client ID, secret, redirect URI, and environment for seamless fiscal invoicing workflows.

Implements the AP2 Agent Payments Protocol for multi-agent commerce — creating, signing, and verifying Verifiable Digital Credentials (VDCs) and mandates (Cart, Intent, Payment), orchestrating Shopping/Merchant/Credentials Provider agents through human-present and human-not-present transaction flows, handling 3DS2/OTP challenges, cryptographic signing, and MCP/A2A integrations

Customize and implement YCom user authentication in REDAXO PHP apps: configure login/registration/profile forms, integrate SSO with SAML/OAuth2/CAS, enable 2FA/OTP enforcement, protect articles/media via groups/permissions, manage sessions/tokens, and log activity.

Design compliant fintech systems with double-entry ledgers, ACID transaction processing, financial data modeling, banking API integrations, fraud detection pipelines, trading engines, and regulatory controls for SOX, PSD2, KYC/AML, GDPR.

Implement Dutch government IT standards (Digikoppeling, API Design Rules, OAuth NL, FSC, CloudEvents, BOMOS) for secure message exchange, REST APIs, event notifications, e-procurement, and GDPR logging using Logius specifications. Builds and validates standards documentation with ReSpec and GitHub Actions.

Secure Python-based MCP servers and multi-agent pipelines by implementing OAuth 2.0 flows with PKCE and providers like Google/GitHub, enforcing 5-layer defenses against prompt/SQL injections and unauthorized access via RBAC, and achieving GDPR/CCPA compliance with consent management, data minimization patterns, and regulatory checklists.

Integrate Tray e-commerce stores with external systems via the Tray API, enabling full management of products, orders, customers, shipping, payments, and catalogs, plus data migration from Shopify, WooCommerce, Magento, VTEX, and Nuvemshop.

Integrate Sinch APIs in Claude Code to send/receive omnichannel messages via SMS, WhatsApp, RCS, and more; provision/manage phone numbers and webhooks; verify users; handle voice calls, faxes, and Mailgun emails; automate setups with skills, commands, and local MCP server.

Develop .NET applications in Claude Code with full lifecycle support — from architecture and domain design through C# coding, ASP.NET Core API development, UI across Blazor/MAUI, testing, debugging, CI/CD, security review, and documentation generation

Design and audit RESTful APIs following proven patterns from Stripe, GitHub, Twilio, and other leading APIs. Get research-backed guidance on routes, methods, errors, auth, caching, versioning, webhooks, and more, plus automated review of your API against 12 design principles.

Conduct AI-orchestrated pentests on deployed web apps via CLI: run passive recon, discovery of APIs/secrets/cloud backends, scans for injections/auth/business logic/cloud misconfigs/WAFs, optional active exploits with consent, and generate PDF reports with severity-ranked findings and remediations.

Automate Google Workspace operations via CLI: manage resources across Gmail, Calendar, Drive, Docs, Sheets, Chat, Admin SDK, and 20+ other APIs. Execute cross-service productivity workflows like standup reports, meeting prep, email-to-task conversion, and team announcements.

Implement Auth0 authentication in Next.js and Express.js apps using patterns for JWT middleware with scopes, permissions, and RBAC; client-side providers, hooks, and protected routes; server sessions; plus M2M flows, token caching, and user/organization management via TypeScript SDKs.

Automates end-to-end content creation: collect hot topics from RSS feeds, generate platform-optimized articles for WeChat, Xiaohongshu, and Feishu with AI drafting, enforce compliance review, and publish via automated browser and API workflows. Also supports analyzing content performance data with statistical charts and reports.