Security & Testing Agent Skills

Lutece RBAC Implementation

Provides standardized rules and patterns for implementing Role-Based Access Control (RBAC) within Lutece 8 plugins.

Package Validator

Validates SAX package structures and ensures Sub-Agent optimization rules are strictly followed to maintain high-quality agentic workflows.

Pre-Commit Design Review

Performs expert-level design analysis to detect architectural debt, primitive obsession, and abstraction issues that automated linters cannot identify.

SAX Quality Audit

Performs comprehensive quality assessments across SAX packages to ensure structural integrity and adherence to development standards.

Testing Strategies & TDD

Implements comprehensive testing patterns including unit, integration, and E2E tests following the testing pyramid and TDD principles.

E2E Testing

Performs systematic web application testing using Playwright to discover functionality, execute test regimes, and analyze results.

Secrets Manager Integrator

Automates the setup and configuration of secrets management tools like HashiCorp Vault and AWS Secrets Manager for secure infrastructure.

Security Compliance & Governance

Automates security framework assessments and regulatory governance to ensure production-grade compliance adherence.

Verification & Quality Assurance

Ensures code reliability and output accuracy through real-time truth scoring, automated quality checks, and intelligent rollbacks.

Codebase Analyzer

Analyzes project architecture, detects code smells, and identifies optimization opportunities for improved code quality and performance.

Refactoring

Enhances code maintainability and reduces complexity through autonomous linter-driven patterns like storifying and dependency rejection.

Go Testing Expert

Generates and guides Go testing strategies using a pyramid approach with a focus on in-memory dependencies and 100% coverage for leaf types.

Linter-Driven Development

Orchestrates a comprehensive development workflow for TypeScript and React by integrating design, automated testing, linting loops, and pre-commit reviews.

Defensive Security Operations

Automates security operations center tasks including threat hunting, alert triage, and incident response orchestration.

Code Analyzer

Analyzes code structure, patterns, and quality to identify potential issues and architectural improvements without modifying source files.

Pre-Commit Design Review

Validates TypeScript and React code against design principles, accessibility standards, and architectural best practices beyond what standard linters can enforce.

React Testing Patterns

Applies best practices for React and TypeScript testing by prioritizing user behavior, accessible queries, and realistic API mocking.

Systematic Debugging

Enforces a rigorous four-phase methodology to identify root causes and implement verified fixes for complex technical issues.

Repository Analyzer

Conducts comprehensive audits of codebases to evaluate structure, technology stacks, documentation quality, and overall maintainability.

Sandbox Manager

Configures and manages security sandboxing for Claude Code to ensure isolated and restricted execution of untrusted or sensitive code.

Bug Hunter

Investigates software bugs, performs root cause analysis, and generates systematic fixes through a structured diagnostic workflow.

Test-Driven Development (TDD)

Enforces a disciplined Red-Green-Refactor workflow to ensure high-quality code through test-first implementation.

FFUF Web Fuzzing

Accelerates web security testing by providing expert guidance for high-performance fuzzing, directory discovery, and vulnerability research.

Metric Runner

Executes verification tests and extracts quantitative metrics to drive autonomous code optimization loops.

OSS License Compliance

Automates Open Source Software (OSS) license auditing and compliance checks across multiple tech stacks to mitigate legal and commercial risks.

Component Tester

Writes, executes, and analyzes robust UI component tests using Vitest and React Testing Library with a focus on accessibility and coverage.

Security Auditor

Secures web applications by identifying vulnerabilities, implementing XSS/CSRF protections, and auditing authentication flows.

Security Coordinator

Orchestrates RAN security using cognitive threat detection, predictive modeling, and intelligent policy management for 5G networks.

Stable Version Auditor

Audits and manages technical stack versions to ensure stability and security through LTS and EOL tracking.

Quality Gates & Iterative Workflows

Implements rigorous quality checkpoints, user approval gates, and iterative refinement loops for high-reliability AI development.