Software Development Agent Stack · open source

Automate your SDLC. And everything around it.
An elite expert for every department.

64 opinionated playbooks — code review, security audits, deploy pipelines, proposals, release notes, outbound sequences — packaged as Claude Code skills that trigger on plain-English requests. Each one captures a procedure a senior practitioner in that role would follow, shipped as a Markdown file your team can read, edit, and override. 8 departments. 9 end-to-end orchestrators. One install command.

brew install tahirraufkeeyu/tap/skillskit && skillskit install all

One line. macOS and Linux via Homebrew. Windows, curl, and manual install →

Install Browse departments View on GitHub ↗

Every skill ships a Customise for your organisation button — rewrite any skill for your stack via an LLM, fully in your browser. Add your OpenRouter key →

64 skills · 12 safe · 38 writes-local · 12 writes-shared · 2 destructive

Run it. Or rewrite it for your stack.

Left: how a skill runs end to end when you invoke it. Right: how the per-skill customizer rewrites it for your org in one click. Both are real flows.

What running a skill looks like api-design skill · end to end
— install skillskit, install the 64 skills, use one — # 1 Install the CLI $ brew tap tahirraufkeeyu/tap $ brew install skillskit Pouring skillskit...done installed skillskit v0.1.0 to /opt/homebrew/bin/skillskit # 2 Install all 64 skills $ skillskit install all ▸ developers ✓ 9 skills ▸ security ✓ 13 skills ▸ devops ✓ 7 skills ▸ infrastructure ✓ 7 skills ▸ qa ✓ 7 skills ▸ sales ✓ 7 skills ▸ marketing ✓ 7 skills ▸ internal-comms ✓ 7 skills 64 installed across 8 departments → ~/.claude/skills/ # 3 Start using them $ claude > review my staged changes for security and perf issues matched skill: code-review Claude auto-picked code-review from its description.
Three commands: install the CLI with Homebrew, install all 64 skills into ~/.claude/skills/, then start Claude Code. Skills auto-trigger by description — no slash commands to memorise. See all install options →
Customise monitoring-setup for your org Tech stack EKS on AWS · Python/FastAPI · Postgres Scale Scaleup (50–500) Constraints SOC2 Type II · Vault · ArgoCD deploys ▸ Customise with LLM contacting openrouter… streaming claude sonnet 4.5… Diff · +18 / −4 supported-stacks: - prometheus+grafana+k8s - argocd+k8s # added for your stack ## Procedure 1. Detect the stack. - - kubectl get ns monitoring 2>/dev/null + - kubectl get applications.argoproj.io -A + - vault kv list secret/monitoring 2>/dev/null [ Edit ] [ Save ] [ Copy install ] [ Download zip ◀ ] ✓ monitoring-setup-customised.zip
The customizer's actual flow. Your key, your form, your diff — runs browser-side against OpenRouter. Bring your own key →

Install

Pick your platform.

The skillskit CLI is a single cross-platform binary — macOS, Linux, Windows (amd64 + arm64) — with all 64 skills baked in. No runtime, no Node, no Python. Installs skills into ~/.claude/skills/; also targets Cursor, Codex, and Gemini with --host.

macOS & Linux

Recommended

Homebrew on macOS or Linuxbrew on Linux.

brew tap tahirraufkeeyu/tap
brew install skillskit
skillskit install all

Upgrading? brew upgrade skillskit && skillskit update

Windows

Scoop

One-liner via the Scoop package manager.

scoop bucket add skillskit https://github.com/tahirraufkeeyu/scoop-bucket
scoop install skillskit
skillskit install all

Upgrading? scoop update skillskit && skillskit update

One-liner (no package manager)

macOS / Linux

Grabs the latest release from GitHub, verifies SHA256, drops the binary on PATH.

curl -fsSL https://skillskit.dev/install | sh
skillskit install all

CI runners, containers, any Unix without a package manager. If skillskit.dev is unreachable, swap the URL for raw.githubusercontent.com/tahirraufkeeyu/software-development-agent-stack--sdas/main/scripts/install-remote.sh — same script.

Windows — PowerShell

No package manager

Same installer, PowerShell flavour. Adds %LOCALAPPDATA%\Programs\skillskit to your user PATH.

iwr https://skillskit.dev/install.ps1 -useb | iex
skillskit install all

Open a new terminal after install so PATH picks up. Behind a firewall? Use raw.githubusercontent.com/tahirraufkeeyu/software-development-agent-stack--sdas/main/scripts/install-remote.ps1 — same script, served from GitHub.

After install

skillskit install developers     # one department
skillskit install --host cursor all  # target Cursor instead
skillskit list                   # see what's installed
skillskit search "code review"   # find skills by keyword
skillskit update                 # re-sync to the latest
skillskit remove all             # uninstall everything this kit shipped
skillskit --help                 # full command list

Skills are embedded in the binary. Upgrading the CLI (via brew upgrade, scoop update, or re-running the curl installer) upgrades the skills; skillskit update re-syncs any already-installed skills to the new versions without touching custom skills or other tools.

Don't want to use the CLI? The legacy git clone && ./install.sh path is still supported — see the README.

Other install options
  • GitHub Releases — download the matching archive from the latest release and drop the binary on your PATH. Checksums in checksums.txt.
  • go install (requires Go 1.22+) — go install github.com/tahirraufkeeyu/software-development-agent-stack--sdas@latest builds and installs the same binary GoReleaser ships, with all skills embedded. Use this if you want the latest main rather than a tagged release.
  • Git clone + install.sh (legacy) — the shell-script installer from the repo root still works identically. Useful for air-gapped environments or editing skills locally before installing.

Why skills, not just prompts.

Most "AI for teams" content stops at "install Claude Code and good luck." skillskit is the missing layer — the one that makes Claude trigger on the right work, follow the same process your senior people would, and produce output consistent with what your team already ships.

A skill is a single Markdown file (SKILL.md) that declares when it should run, the exact procedure, concrete examples, constraints, and quality checks. Claude Code auto-triggers the right one based on your natural-language request — no slash commands to memorise, no framework to learn.

MIT licensed. No vendor lock-in, no telemetry, no black box. Fork it, customise it for your org, ship it.

An expert for every department.

Eight teams. 64 playbooks. Browse by role — each department ships its own skill set, MCP recommendations, and recommended weekly rhythm.

Developers

9 skills

Code review, tests, refactoring, debug, commits, API design, docs, scaffolding.

1 orchestrator — ship-feature

DevOps

7 skills

Deploy, CI/CD YAML, Terraform, Helm, incidents, cloud cost optimisation.

1 orchestrator — release-to-prod

Infrastructure

7 skills

Monitoring, log aggregation, SSL certs, network diagnostics, backups, cluster health.

1 orchestrator — infra-triage

Internal comms

7 skills

Status updates, postmortems, meeting notes, changelogs, onboarding, announcements.

1 orchestrator — comms-weekly

Marketing

7 skills

Content, social, SEO, email campaigns, competitor monitoring, weekly analytics.

1 orchestrator — marketing-weekly

QA

7 skills

E2E tests, API tests, performance, accessibility, test data, bug reports.

1 orchestrator — full-regression

Sales

7 skills

Lead research, competitive analysis, proposals, outreach, RFPs, meeting prep.

1 orchestrator — outbound-sequence

Security

13 skills

Scan, report, remediate. Secrets, dependencies, SAST/DAST, containers, SOC2.

2 orchestrators — full-security-audit, full-security-remediation

End-to-end flows, not just tools.

Orchestrators chain the task skills into a single auditable run — pre-commit gate, release audit, weekly comms cycle — and pass artifacts between steps. Every department ships at least one.

ship-feature

Use when a developer has written code for a single feature and wants a full pre-commit gate (tests generated, code reviewed, commit message drafted) in one pass. Chains test-writer, code-review, and commit-message end-to-end and produces a single report summarising the run.

chains: test-writercode-reviewcommit-message

full-security-audit

Use when preparing for a release, a SOC2/PCI audit window, or any "sweep everything" security request. Chains secret-scanner, dependency-audit, security-audit, container-scan (if applicable), and pentest-report end-to-end and produces a single dated pentest report.

chains: secret-scannerdependency-auditsecurity-auditcontainer-scanpentest-report

release-to-prod

Use when a merged PR needs to be shipped to production end-to-end. Chains CI verification, canary deploy, SLO-driven auto-rollback, and changelog generation into a single auditable release run.

chains: pipeline-builderdeployincident-responsechangelog

marketing-weekly

Use when running the marketing team's weekly content cycle end-to-end on a Mon-Fri cadence. Orchestrates competitor monitoring, long-form content, SEO, social, email, and analytics into a single weekly report.

chains: competitor-monitorcontent-writerseo-optimizersocial-mediaemail-campaignanalytics-report

See it ship real work.

Two worked walkthroughs in the repo — the exact prompt, the skill Claude matched, every file changed. No toy demos: