myadmin-plugins
diff --git a/‎.claude/hooks/caliber-check-sync.sh‎
Lines changed: 11 additions & 0 deletions b/‎.claude/hooks/caliber-check-sync.sh‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎.claude/settings.json‎
Lines changed: 79 additions & 0 deletions b/‎.claude/settings.json‎
Lines changed: 79 additions & 0 deletions
diff --git a/‎.claude/skills/directadmin-api-call/SKILL.md‎
Lines changed: 126 additions & 0 deletions b/‎.claude/skills/directadmin-api-call/SKILL.md‎
Lines changed: 126 additions & 0 deletions
diff --git a/‎.claude/skills/find-skills/SKILL.md‎
Lines changed: 54 additions & 0 deletions b/‎.claude/skills/find-skills/SKILL.md‎
Lines changed: 54 additions & 0 deletions
@@ -0,0 +1,11 @@
+#!/bin/sh
+if grep -q "caliber" .git/hooks/pre-commit 2>/dev/null; then
+  exit 0
+fi
+FLAG="/tmp/caliber-nudge-$(echo "$PWD" | shasum | cut -c1-8)"
+find /tmp -maxdepth 1 -name "caliber-nudge-*" -mmin +120 -delete 2>/dev/null
+if [ -f "$FLAG" ]; then
+  exit 0
+fi
+touch "$FLAG"
+printf '{"decision":"block","reason":"Caliber agent config sync is not set up on this machine. Tell the user: This project uses Caliber to keep agent configs in sync — it is not set up yet. Want me to run /setup-caliber? (~30 seconds)"}'
@@ -0,0 +1,79 @@
+{
+  "hooks": {
+    "Stop": [
+      {
+        "matcher": "",
+        "hooks": [
+          {
+            "type": "command",
+            "command": ".claude/hooks/caliber-check-sync.sh",
+            "description": "Caliber: offer setup if not configured"
+          }
+        ]
+      }
+    ],
+    "PostToolUse": [
+      {
+        "matcher": "",
+        "hooks": [
+          {
+            "type": "command",
+            "command": "caliber learn observe",
+            "description": "Caliber: recording tool usage for session learning"
+          }
+        ]
+      }
+    ],
+    "PostToolUseFailure": [
+      {
+        "matcher": "",
+        "hooks": [
+          {
+            "type": "command",
+            "command": "caliber learn observe --failure",
+            "description": "Caliber: recording tool failure for session learning"
+          }
+        ]
+      }
+    ],
+    "UserPromptSubmit": [
+      {
+        "matcher": "",
+        "hooks": [
+          {
+            "type": "command",
+            "command": "caliber learn observe --prompt",
+            "description": "Caliber: recording user prompt for correction detection"
+          }
+        ]
+      }
+    ],
+    "SessionEnd": [
+      {
+        "matcher": "",
+        "hooks": [
+          {
+            "type": "command",
+            "command": "caliber learn finalize --auto",
+            "description": "Caliber: finalizing session learnings"
+          }
+        ]
+      },
+      {
+        "matcher": "",
+        "hooks": [
+          {
+            "type": "command",
+            "command": "caliber refresh --quiet",
+            "description": "Caliber: auto-refreshing docs based on code changes"
+          }
+        ]
+      }
+    ]
+  },
+  "permissions": {
+    "allow": [
+      "Bash(git *)"
+    ]
+  }
+}
@@ -0,0 +1,126 @@
+---
+name: directadmin-api-call
+description: Creates a DirectAdmin API call using HTTPSocket for connect/authenticate/query/parse pattern. Use when user says 'call DirectAdmin API', 'query DA endpoint', 'add DA command', or adds new bin/ scripts. Covers SSL connection on port 2222, set_login, query with options array, fetch_parsed_body, and error checking via $result['error']. Do NOT use for modifying src/HTTPSocket.php itself or for non-DirectAdmin API integrations.
+---
+# DirectAdmin API Call
+
+## Critical
+
+- **Never hardcode credentials** in committed files — `$hash`/`$password` must come from DB (`backup_key`) or be placeholder comments only
+- Always use the `'ssl://'` stream prefix for production connections — plain HTTP is only for local debug (seen commented out in bin scripts)
+- Check `$result['error'] != "0"` (string `"0"`, not int) — this is DirectAdmin's convention
+- Always call `fetch_parsed_body()` immediately after `query()` before any other query
+- In `src/Plugin.php` event handlers, always call `$event->stopPropagation()` after handling
+
+## Instructions
+
+1. **Import HTTPSocket** at the top of the file:
+   ```php
+   use Detain\MyAdminDirectAdminStorage\HTTPSocket;
+   ```
+   For `bin/` scripts also add: `require_once('../vendor/autoload.php');`  
+   For DB-accessing bin scripts: `include_once __DIR__.'/../../../../include/functions.inc.php';`
+
+2. **Get server credentials** — in Plugin event handlers use:
+   ```php
+   $settings = get_module_settings(self::$module); // self::$module = 'backups'
+   $serverdata = get_service_master($serviceClass->getServer(), self::$module);
+   $hash = $serverdata[$settings['PREFIX'].'_key'];
+   $ip   = $serverdata[$settings['PREFIX'].'_ip'];
+   ```
+   In bin/ scripts query the DB directly:
+   ```php
+   $db = get_module_db('backups');
+   $db->query("select * from backup_masters where backup_name='".$db->real_escape($argv[1])."'", __LINE__, __FILE__);
+   $db->next_record(MYSQL_ASSOC);
+   $ip       = $db->Record['backup_ip'];
+   $password = $db->Record['backup_key'];
+   ```
+   Verify credentials are non-empty before continuing.
+
+3. **Connect and authenticate:**
+   ```php
+   $sock = new HTTPSocket();
+   $sock->connect('ssl://'.$ip, 2222);
+   $sock->set_login('admin', $hash);
+   ```
+   Use `($server_ssl == 'Y' ? 'ssl://' : '').$ip` if SSL is configurable.
+
+4. **Build `$apiCmd` and `$apiOptions`, then query:**
+   - POST with params array (most mutating commands):
+     ```php
+     $apiCmd = '/CMD_API_SELECT_USERS';
+     $apiOptions = [
+         'location' => 'CMD_SELECT_USERS',
+         'suspend'  => 'Suspend',
+         'select0'  => $username,
+     ];
+     $sock->query($apiCmd, $apiOptions);
+     ```
+   - GET with query string (read-only commands):
+     ```php
+     $sock->query('/CMD_API_SHOW_USER_CONFIG?user='.$username);
+     ```
+   Verify `$apiCmd` starts with `/CMD_API_`.
+
+5. **Fetch and check result:**
+   ```php
+   $result = $sock->fetch_parsed_body();
+   if ($result['error'] != "0") {
+       // error path
+       myadmin_log('directadmin', 'error', 'Error: Text:'.$result['text'].' Details:'.$result['details'], __LINE__, __FILE__, self::$module, $serviceClass->getId());
+       $event['success'] = false;
+       $event->stopPropagation();
+       return;
+   }
+   ```
+   Special terminate case — also treat `$result['text'] == "System user {$username} does not exist!"` as success.
+
+6. **Log the call** (required in Plugin event handlers):
+   ```php
+   request_log(self::$module, $serviceClass->getCustid(), __FUNCTION__, 'directadmin', $apiCmd, $apiOptions, $result, $serviceClass->getId());
+   myadmin_log('myadmin', 'info', 'DirectAdmin '.$apiCmd.' '.json_encode($apiOptions).' Response: '.json_encode($result), __LINE__, __FILE__, self::$module, $serviceClass->getId());
+   ```
+
+## Examples
+
+**User says:** "Add a bin script to unsuspend a user by hostname"
+
+**Actions taken:**
+1. Create `bin/unsuspend_user.php`
+2. Include functions, query `backup_masters` for credentials by hostname arg
+3. Connect with `'ssl://'.$ip` on port 2222, `set_login('admin', $password)`
+4. Query `/CMD_API_SELECT_USERS` with `dounsuspend=y`, `select0=$username`
+5. `fetch_parsed_body()`, `print_r($result)`
+
+**Result:**
+```php
+<?php
+use Detain\MyAdminDirectAdminStorage\HTTPSocket;
+include_once __DIR__.'/../../../../include/functions.inc.php';
+$db = get_module_db('backups');
+if (count($_SERVER['argv']) < 3) {
+    die("Usage: {$_SERVER['argv'][0]} <hostname> <username>\n");
+}
+$db->query("select * from backup_masters where backup_name='".$db->real_escape($_SERVER['argv'][1])."'", __LINE__, __FILE__);
+if ($db->num_rows() == 0) { die("Invalid server\n"); }
+$db->next_record(MYSQL_ASSOC);
+$sock = new HTTPSocket();
+$sock->connect('ssl://'.$db->Record['backup_ip'], 2222);
+$sock->set_login('admin', $db->Record['backup_key']);
+$sock->query('/CMD_API_SELECT_USERS', [
+    'location'    => 'CMD_SELECT_USERS',
+    'dounsuspend' => 'y',
+    'select0'     => $_SERVER['argv'][2],
+]);
+$result = $sock->fetch_parsed_body();
+print_r($result);
+```
+
+## Common Issues
+
+- **`$result['error']` is always `"1"` / empty response:** SSL handshake failed. Verify the server actually has a valid cert on port 2222: `openssl s_client -connect $ip:2222`. If self-signed, `HTTPSocket` still accepts it (verify_peer is off by default).
+- **`fetch_parsed_body()` returns `null` or non-array:** Called a second time after already fetching, or `query()` was never called. Always call `query()` then `fetch_parsed_body()` in sequence.
+- **`result['text']` = `"Cannot Login"` :** Wrong `$hash`/password. Confirm `backup_key` column value in `backup_masters` matches the DirectAdmin admin password.
+- **`result['details']` = `"Sorry, the password..."` :** DirectAdmin rejects the generated password. Retry with `generateRandomString(10, 2, 2, 2, 1)` in a loop as done in `src/Plugin.php` around the activate method.
+- **`result['details']` = `"Sorry, a group for that username already exists."` :** Username collision. Append/rotate a character: `$username = mb_substr($username.'a', 1)` and retry (see `src/Plugin.php` activate handler).
@@ -0,0 +1,54 @@
+---
+name: find-skills
+description: Discovers and installs community skills from the public registry. Use when the user mentions a technology, framework, or task that could benefit from specialized skills not yet installed, asks 'how do I do X', 'find a skill for X', or starts work in a new technology area. Proactively suggest when the user's task involves tools or frameworks without existing skills.
+---
+
+# Find Skills
+
+Search the public skill registry for community-contributed skills
+relevant to the user's current task and install them into this project.
+
+## Instructions
+
+1. Identify the key technologies, frameworks, or task types from the
+   user's request that might have community skills available
+2. Ask the user: "Would you like me to search for community skills
+   for [identified technologies]?"
+3. If the user agrees, run:
+   ```bash
+   caliber skills --query "<relevant terms>"
+   ```
+   This outputs the top 5 matching skills with scores and descriptions.
+4. Present the results to the user and ask which ones to install
+5. Install the selected skills:
+   ```bash
+   caliber skills --install <slug1>,<slug2>
+   ```
+6. Read the installed SKILL.md files to load them into your current
+   context so you can use them immediately in this session
+7. Summarize what was installed and continue with the user's task
+
+## Examples
+
+User: "let's build a web app using React"
+-> "I notice you want to work with React. Would you like me to search
+   for community skills that could help with React development?"
+-> If yes: run `caliber skills --query "react frontend"`
+-> Show the user the results, ask which to install
+-> Run `caliber skills --install <selected-slugs>`
+-> Read the installed files and continue
+
+User: "help me set up Docker for this project"
+-> "Would you like me to search for Docker-related skills?"
+-> If yes: run `caliber skills --query "docker deployment"`
+
+User: "I need to write tests for this Python ML pipeline"
+-> "Would you like me to find skills for Python ML testing?"
+-> If yes: run `caliber skills --query "python machine-learning testing"`
+
+## When NOT to trigger
+
+- The user is working within an already well-configured area
+- You already suggested skills for this technology in this session
+- The user is in the middle of urgent debugging or time-sensitive work
+- The technology is too generic (e.g. just "code" or "programming")