Skip to content

Skills Vault Overview

The Skills Vault is a community-driven library of security automation skills that can be discovered, executed, and managed through the Nodebo Gateway platform.

What is a Skill?

A Skill in Nodebo is a self-contained unit of automation that performs a specific security operation. Skills are:

  • Reusable: Written once, executed many times
  • Versioned: Track changes with semantic versioning
  • Reviewed: Community quality assurance process
  • Discoverable: Browse by category and tags
  • Executable: Run directly from Claude Code

Skill Example

Skill: IP Reputation Check
Category: Threat Intel
Author: Security Team
Version: 1.2.0
Status: Published

What it does:
- Takes an IP address as input
- Queries VirusTotal, IPInfo, and Censys
- Returns consolidated threat intelligence
- Formats results for security teams

Skills Vault Architecture

graph TB
    subgraph "User Interface"
        A[Skills Page]
        B[My Skills Page]
        C[Review Dashboard]
    end

    subgraph "Skill Management"
        D[Skill Publishing]
        E[Skill Versioning]
        F[Review Process]
        G[Execution Engine]
    end

    subgraph "Data Storage"
        H[PostgreSQL]
        I[Skills Database]
    end

    subgraph "Execution"
        J[Skill Executor]
        K[Gateway Integration]
    end

    A --> D
    B --> E
    C --> F
    D --> F
    F --> G
    G --> K
    D --> I
    E --> I
    F --> I
    I --> H
    G --> J

Skill Lifecycle

1. Create

A skill author creates a new skill with: - Name and description - Category and tags - Parameters and documentation - Implementation code

# Create new skill
POST /api/skills/
{
  "name": "IP Reputation Check",
  "description": "Check IP reputation across multiple threat intel sources",
  "category": "Threat Intel",
  "visibility": "private"
}

2. Draft

Skills start as Draft and are only visible to the author: - Saved in "My Skills" page - Can be edited and updated - Not visible to other users - Ready for internal testing

3. Submit for Review

When ready, authors submit for review: - Skill moves to "Pending Review" status - Appears in Review Dashboard for moderators - Cannot be executed by others yet - Author cannot make changes during review

graph LR
    A["Draft<br/>(Private)"] -->|Submit| B["Pending Review<br/>(Locked)"]
    B -->|Approve| C["Published<br/>(Public)"]
    B -->|Reject| D["Rejected<br/>(Private)"]

4. Review Process

Moderators review using a checklist:

Requirements: - ✓ Clear description - ✓ Parameters documented - ✓ Proper error handling

Security: - ✓ No security vulnerabilities - ✓ Safe credential handling - ✓ Input validation

Quality: - ✓ Good code quality - ✓ Test coverage - ✓ Performance acceptable

5. Published

Approved skills become public and visible in the Skills Vault: - Searchable by name, category, tags - Can be executed by any user - Shows author, version, ratings - View/download statistics - Community ratings and feedback

6. Execute

Users discover and execute skills: - Browse Skills Vault - View skill details and documentation - Execute from Claude Code - Provide parameters - Get results

7. Version

Authors maintain multiple versions: - Create new versions from published skills - Update code, documentation - Increment version number (1.0.0 → 1.1.0) - Users can choose version when executing - Maintain backward compatibility

Skills Vault Statistics

The Skills Vault dashboard shows:

graph LR
    A["Total Skills<br/>0"] -->|Published| B["Total Vault Skills"]
    C["Total Views<br/>0"] -->|Downloads| D["Execution Count"]
    E["Total Ratings<br/>0"] -->|Community| F["Avg Rating"]

    B -.->|Metric| G["Skills Vault Stats"]
    D -.->|Metric| G
    F -.->|Metric| G

Key Metrics

Metric Description
Total Skills Number of published skills in vault
Total Views Number of times skills were viewed
Total Ratings Number of community ratings
Avg Rating Average rating (1-5 stars)
Skills by Category Distribution across categories
Top Skills Most viewed/rated skills

Skill Categories

Skills are organized into categories for easy discovery:

  • Threat Intel - Intelligence gathering and analysis
  • Incident Response - IR playbooks and automation
  • OSINT - Open source intelligence
  • Malware Analysis - Malware research tools
  • Forensics - Digital forensics automation
  • Vulnerability Management - Vuln assessment tools
  • Red Team - Offensive security tools
  • Blue Team - Defensive security tools
  • Automation - General purpose automation
  • Other - Miscellaneous

Skills Vault Features

Discovery

**Search & Filter**
- Full-text search by name/description
- Filter by category
- Filter by tags
- Sort by newest/most viewed/highest rated
- Featured skills spotlight

Community

**Engagement**
- Rate skills (1-5 stars)
- Leave comments
- View author profile
- See execution history
- Share skills with team

Quality Assurance

**Reviews**
- Moderator review before publishing
- Security validation
- Code quality checks
- Documentation review
- Test coverage validation

Versions

**Version Control**
- Multiple versions per skill
- Semantic versioning
- Changelog per version
- Backward compatibility
- Deprecation warnings

Publishing a Skill

Step-by-Step Guide

  1. Navigate to Skills > Publish Skill
  2. Go to the web UI

  3. Click "Publish Skill" button

  4. Fill Skill Information

  5. Name: Unique, descriptive name
  6. Description: What the skill does
  7. Category: Primary classification
  8. Tags: Additional classification

  9. Visibility: Private (draft) or Public (after review)

  10. Define Parameters

  11. Parameter name
  12. Type (string, number, boolean, etc.)
  13. Description
  14. Required/optional

  15. Default values

  16. Write Implementation

  17. Implement skill logic
  18. Add error handling
  19. Include documentation

  20. Add tests if possible

  21. Test Locally

  22. Verify parameter validation
  23. Test error cases
  24. Check output format

  25. Validate performance

  26. Submit for Review

  27. Click "Submit for Review"
  28. Provide any additional notes

  29. Wait for moderation

  30. Publish

  31. Once approved, skill is public
  32. Appears in Skills Vault
  33. Can be executed by users

Executing a Skill

From Web UI

  1. Go to Skills Vault
  2. Search or browse skill
  3. Click skill card
  4. Click "Execute"
  5. Fill parameters
  6. Click "Run"
  7. View results

From Claude Code

# Using MCP protocol
{
  "jsonrpc": "2.0",
  "id": 1,
  "method": "tools/call",
  "params": {
    "name": "ip_reputation_check",
    "arguments": {
      "ip": "8.8.8.8"
    }
  }
}

API Execution

curl -X POST https://portal.nodebo.com/api/skills/execute \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "skill_id": "skill-uuid",
    "parameters": {
      "ip": "8.8.8.8"
    }
  }'

Skill Best Practices

Documentation

  • ✅ Clear description of what skill does
  • ✅ Example usage and parameters
  • ✅ Expected output format
  • ✅ Error messages explained
  • ✅ Version history and changes

Code Quality

  • ✅ Follows coding standards
  • ✅ Includes error handling
  • ✅ Input validation
  • ✅ Proper logging
  • ✅ Performance optimized

Security

  • ✅ No hardcoded credentials
  • ✅ Use encrypted credential storage
  • ✅ Input validation (prevent injection)
  • ✅ Output encoding (prevent XSS)
  • ✅ No sensitive data in logs

Testing

  • ✅ Unit tests for logic
  • ✅ Integration tests with real APIs
  • ✅ Error case testing
  • ✅ Performance testing
  • ✅ Security testing

Skill Metadata

Every skill includes:

{
  "id": "uuid",
  "name": "IP Reputation Check",
  "slug": "ip-reputation-check",
  "description": "Check IP reputation across multiple sources",
  "long_description": "Detailed description...",
  "category": "Threat Intel",
  "tags": ["ip", "threat-intel", "automation"],
  "author_id": "uuid",
  "author_name": "Security Team",
  "version": "1.2.0",
  "visibility": "community",
  "review_status": "published",
  "rating_avg": 4.5,
  "download_count": 342,
  "created_at": "2026-01-15T10:30:00Z",
  "updated_at": "2026-01-31T14:20:00Z",
  "published_at": "2026-01-20T09:00:00Z",
  "is_featured": true,
  "parameters": [
    {
      "name": "ip",
      "type": "string",
      "description": "IP address to check",
      "required": true,
      "pattern": "^\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}$"
    }
  ]
}

Get Started

Ready to explore threat intelligence?

  1. Go to Skills Vault on the portal
  2. Browse available threat intel tools
  3. Execute skills from Claude Code or the web UI
  4. Check out the Getting Started Guide for setup instructions

External Resources

Last Updated: February 1, 2026 Status: ✅ Production Ready