Olin Osborne III

The Forge - An Agentic Software Factory with specialized agents, skills, commands, and integrations for AI-assisted development

(RECOMMENDED) The Forge core plugin — 102 skills, 19 agents, 12 commands, 81 context files, 20 hooks, and 4 interfaces for AI-assisted software development. Install this first, then add external plugins for your specific use case.

Vercel agent skills for React, React Native, composition patterns, and web design. Includes best practices for component architecture, state management, and modern React patterns.

Google Labs agent skills for Stitch design-to-code workflows, including DESIGN.md generation, React component conversion, prompt enhancement, and shadcn/ui integration.

Microsoft core skills for Azure deployment, MCP builders, GitHub integration, and AI skill creation. Language-agnostic tooling and infrastructure.

Microsoft Azure SDK skills for Python developers. 41 skills covering AI, data, storage, messaging, monitoring, and Azure services.

Microsoft Azure SDK skills for .NET developers. 29 skills covering AI, data, storage, resource management, and Azure services.

Microsoft Azure SDK skills for TypeScript/Node.js developers. 24 skills covering AI, data, storage, and Azure services.

Microsoft Azure SDK skills for Java developers. 26 skills covering AI, data, messaging, and Azure services.

Microsoft Azure SDK skills for Rust developers. 7 skills covering Cosmos DB, Event Hub, Identity, Key Vault, and Storage.

Microsoft custom agents and plugins for Azure development. Includes backend, frontend, infrastructure, planner, presenter, scaffolder agents, and deep-wiki documentation generator.

Sentry-specific agent skills for code review, commits, PR management, security review, and documentation. Includes brand guidelines and Django-specific patterns.

Clarify requirements before implementing. When doubting, ask questions.

Build deep architectural context through ultra-granular code analysis before vulnerability hunting

Comprehensive smart contract security toolkit based on Trail of Bits' Building Secure Contracts framework. Includes vulnerability scanners for 6 blockchains and 5 development guideline assistants.

Search and extract data from Burp Suite project files (.burp) for use in Claude

Detect compiler-induced timing side-channels in cryptographic code

Interprets Culture Index survey results for individuals and teams

Debug Buttercup Kubernetes deployments

Create pre-configured devcontainers with Claude Code and language-specific tooling

Security-focused differential review of code changes with git history analysis and blast radius estimation

Scan Android APKs for Firebase security misconfigurations including open databases, storage buckets, authentication issues, and exposed cloud functions. For authorized security research only.

Intercepts GitHub URL fetches and curl/wget commands, redirecting to the authenticated gh CLI. Includes gh CLI usage guidance.

Verify fix commits address audit findings without introducing bugs

Interact with and understand the DWARF debugging format

Analyzes smart contract codebases to identify state-changing entry points for security auditing. Detects externally callable functions that modify state, categorizes them by access level, and generates structured audit reports.

Property-based testing guidance for multiple languages and smart contracts

Create custom Semgrep rules for detecting bug patterns and security vulnerabilities

Creates language variants of existing Semgrep rules with proper applicability analysis and test-driven validation

Identify error-prone APIs, dangerous configurations, and footgun designs that enable security mistakes

Static analysis toolkit with CodeQL, Semgrep, and SARIF parsing for security vulnerability detection

Specification-to-code compliance checker for blockchain audits with evidence-based alignment analysis

Skills from the Trail of Bits Application Security Testing Handbook (appsec.guide)

Find similar vulnerabilities and bugs across codebases using pattern-based analysis

Modern Python best practices. Use when creating new Python projects, and writing Python scripts, or migrating existing projects from legacy tools.

Detects and verifies insecure default configurations including hardcoded credentials, fallback secrets, weak authentication defaults, and dangerous configuration values that remain active in production

Runs code reviews using external LLM CLIs (OpenAI Codex, Google Gemini) on uncommitted changes, branch diffs, or specific commits

YARA-X detection rule authoring with linting and quality analysis

Safely analyzes and cleans up local git branches and worktrees by categorizing them as merged, squash-merged, superseded, or active work.

Sing, clear-voiced Muses, of Hephaestus famed for inventions. With bright-eyed Athene he taught men glorious gifts throughout the world, -- men who before used to dwell in caves in the mountains like wild beasts. But now that they have learned craft through Hephaestus the famed worker, easily they live a peaceful life in their own houses the whole year round.