Reference

The Skills plugin

Skills are the join point of Kvendra. They are markdown prompts — a Claude Code plugin — that orchestrate the CLI and the knowledge base into coherent workflows: planning a feature, running tests, cutting a release, handling an incident.

Kvendra Skills (Apache-2.0) is a Claude Code plugin (markdown prompts; no runtime code).

The official Claude Code plugin that materializes the skills layer: the single set of skills for the project, distributed as a markdown plugin through a public marketplace. It is the join point that orchestrates the CLI and the KB.

Skills require the CLI by security design: every sensitive operation goes through the broker so the language model never sees raw tokens or keys. The user can fork the open-source skills to bypass this at their own risk.

Direction

  • A single set of skills for Claude Code (the parallel community track is deprecated).
  • English as the source language; user-facing output follows the language declared in the project config.
  • Thin, KB/STD-driven skills: tech-specific recipes live in KB STD entities, not hardcoded in the skill markdown.

The skill catalogue

  • Pipelines: new-feature, bug, release-manager, incident-manager, regression.
  • Subagents: planner, implementer, validator, tester, analyzer, updater, interface-validator.
  • Documentation: doc-validator.
  • Setup & meta: setup, env-check, consultancy, to-do, to-do-summary, requirements-analyst, changelog, user-help.
  • Deploy: deploy.

LLM target: Any LLM that Claude Code supports.

Thin skills, knowledge in the KB

A skill does not hardcode the specifics of your stack. Instead, the reusable recipes live as standard/playbook entities (STD) in the knowledge base, and the skill reads them at runtime. That keeps the prompts small and portable while letting each project carry its own conventions in a place that is versioned and auditable.

Why skills require the broker

Every sensitive operation a skill performs is routed through the CLI broker, so the language model orchestrating the work never sees a raw token or key. This is the security spine of the whole system — and because the skills are open source, you can read exactly how it works and adapt it.