Descope Skills
Descope Skills are installable instruction packs for AI coding agents — Cursor, Claude Code, GitHub Copilot, Windsurf, OpenCode, and 36+ compatible tools. Each skill teaches your assistant Descope-specific workflows: correct SDK patterns, console setup steps, migration mappings, and guardrails that reduce hallucinated APIs or insecure auth code.
Most skills work on their own. Used together with the Descope MCP Server, they make it straightforward to build, migrate, and operate Descope from inside your IDE or chat interface.
Skills + MCP
Skills encode how to do Descope work — multi-step workflows, framework detection, and safety checks.
The Descope MCP Server gives your agent live access — search docs, query your project, manage users and flows, and (for some skills) apply FGA schema changes.
Migration and FGA skills call the MCP server when available to verify SDK method names and option shapes against current documentation.
Installation
Install the full collection from the official descope/skills repository:
npx skills add descope/skillsClaude Code — add the marketplace plugin:
/plugin marketplace add descope/skills
/plugin install descope-skillsOnce installed, skills load automatically. Describe what you need in natural language — no slash commands required unless noted below.
Available Skills
Authentication & Custom UI
| Skill | Use for |
|---|---|
| descope-auth | Add Descope login to your app — passwordless OTP, magic link, passkeys, OAuth, SSO, MFA, and passwords. Detects Next.js, React, Node.js, and Python and routes to the right integration guide. |
| descope-byos-builder | Build Bring Your Own Screen (BYOS) React UI on top of Descope Flows. Parses exported flow JSON for real interaction IDs and form keys — avoids silent BYOS failures. |
Example prompts
- "Add Descope authentication to my Next.js app"
- "Help me implement passkey login with Descope"
- "My BYOS submit button does nothing — no errors in the console"
- "Build custom login screens over my Descope sign-up-or-in flow"
Migration
| Skill | Use for |
|---|---|
| auth0-to-descope | Self-service migration from Auth0 — SDK replacement, Actions → Flows, Organizations → Tenants, Token Vault, CIBA, and SSO. Produces a MIGRATION-PLAN.md for review before any code changes. |
| okta-cis-to-descope | Self-service migration from Okta Customer Identity Service (CIS) — hosted OIDC and embedded widget paths, Sign-On Policies → Flows, Authorization Servers → Resources/Inbound Apps, and scp → scope claim updates. |
Example prompts
- "Migrate my Next.js app from nextjs-auth0 to Descope"
- "How do Auth0 Actions map to Descope?"
- "Our Express app uses @okta/oidc-middleware — how do we switch to Descope?"
- "How do Okta Authorization Servers map to Descope Resources?"
Authorization & Infrastructure
| Skill | Use for |
|---|---|
| descope-fga-schema | Author and apply FGA schemas using the ReBAC/ABAC DSL. Dry-run validation, data-loss warnings, and user confirmation before live changes. Requires the Descope MCP Server. |
| descope-terraform | Manage Descope projects as code with the Terraform provider — auth methods, RBAC, connectors, flows, and project settings across environments. |
Example prompts
- "Define an FGA schema with users, organizations, and resource-level permissions"
- "Set up Terraform to manage my Descope project"
- "Create roles and permissions with Terraform"
Security Review
| Skill | Use for |
|---|---|
| auth-review | Static identity security review — enumerates routes, builds an authorization matrix, and triages auth/authz findings (IDOR, JWT flaws, session issues, OAuth gaps). Outputs ./auth-review/report-YYYY-MM-DD.md. Read-only; does not modify code. |
Example prompts
- "/auth-review"
- "Audit my app for authentication and authorization vulnerabilities"
- "Find IDOR and broken access control bugs in this repo"
Recommended Setup
For the best experience working with Descope in an AI-powered IDE:
- Connect the Descope MCP Server — project management, docs search, and live API access.
- Install Descope Skills — structured workflows for integration, migration, FGA, Terraform, and security review.
- Create a Descope project — get your Project ID from Settings → Project.
Skills handle implementation patterns; MCP fills in current docs and project state. Migration skills explicitly check for MCP availability before executing so SDK calls stay accurate.