Security & Testing Agent Skills

GitLab Stack Secrets Manager

Manages secure Docker secrets for GitLab stack projects by enforcing proper storage, permissions, and migration from environment variables.

Paranoid Security Auditor

Conducts rigorous, grounded security and quality audits of codebases, architectures, and deployments with built-in PII and injection guardrails.

Security Auditor

Conducts comprehensive security audits, vulnerability assessments, and DevSecOps integrations to ensure robust application and infrastructure compliance.

TLA+ Formal Specification

Architects and verifies complex distributed systems and concurrent algorithms using the TLA+ formal specification language.

Ansible Testing & Linting

Automates Ansible playbook validation through comprehensive linting, syntax checking, and idempotency testing strategies.

Secret Detection & Credential Scanning

Protects repositories by automatically detecting leaked secrets, API keys, and credentials using Gitleaks integration.

Technical Debt Patterns for Rails

Identifies, categorizes, and prioritizes technical debt in Ruby on Rails applications using enterprise-grade metrics and detection patterns.

Inspequte Rule Recovery

Resumes and completes JVM static analysis rule implementations that failed initial CI validation.

Secure Auth Implementation Patterns

Implements robust authentication and authorization systems using industry-standard patterns like JWT, OAuth2, and Role-Based Access Control.

Web Application Testing

Automates local web application testing and UI verification using Playwright to ensure frontend quality and functionality.

Systematic Debugging Strategies

Master systematic debugging techniques and root cause analysis to efficiently track down bugs across any technology stack.

Skillpack Maintenance

Maintains and enhances existing skill packs through systematic domain analysis, structural reviews, and behavioral gauntlet testing using subagents.

Secure Flow

Integrates secure-by-default coding practices, threat modeling, and vulnerability remediation into the software development lifecycle.

IDAPython Scripting & Reverse Engineering

Automates IDA Pro reverse engineering tasks using modern Python APIs for disassembly, decompilation, and binary analysis.

TDD Red Phase Workflow

Generates comprehensive failing tests to define expected behavior and edge cases during the TDD red phase.

Design by Contract

Automates the planning, implementation, and verification of formal software contracts across multiple programming languages to ensure runtime correctness.

Hardened Rust Development

Implements a validation-first development workflow for Rust projects requiring formal verification, safety proofs, and rigorous concurrency testing.

TDD Workflow Pro

Enforces a strict Test-Driven Development cycle with mandatory failing tests, execution gates, and comprehensive logging for reliable software implementation.

Electron E2E Testing & Automation

Automates and debugs Electron desktop applications using Chrome DevTools Protocol for comprehensive end-to-end testing of both renderer and main processes.

Advanced Error Resolution

Diagnoses software errors through root cause analysis and automates verified bug fixes using Codex delegation.

macOS Desktop Automation (Hammerspoon)

Automates macOS native applications and system workflows using Hammerspoon for end-to-end testing and desktop control.

Security Scan

Performs deep, whole-codebase security audits using extensive context windows to detect vulnerabilities, logic flaws, and cross-module data flow issues.

Advanced E2E Testing & TDD Orchestrator

Enforces rigorous end-to-end testing protocols and routes tasks to specialized web and desktop automation tools using a TDD-first approach.

Skill Review

Conducts comprehensive 9-phase audits of Claude skills to ensure documentation accuracy, code consistency, and compliance with the latest API standards.

Descope Authentication

Integrates secure, passwordless authentication and user management into web applications using Descope SDKs and Flows.

Bluebook Audit Verification

Verifies Bluebook citation corrections in DOCX files by re-scanning for formatting, cross-references, and signal consistency.

Linux Desktop Automation & Testing

Automates and tests Linux desktop applications across Wayland and X11 environments using native tools and D-Bus interfaces.

Systematic Debugging

Enforces a rigorous, four-phase debugging framework to identify root causes and implement verified fixes without trial-and-error thrashing.

Debugging Strategies

Employs systematic methodologies and advanced profiling tools to identify, isolate, and resolve complex software bugs across multiple tech stacks.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, mocking, and fixtures to ensure code reliability and high coverage.