Security & Testing Agent Skills

Compliance Report Generator

Automates the generation of detailed security compliance reports and documentation for frameworks like PCI DSS, HIPAA, and SOC 2.

API Fuzzing & Security Tester

Automates security fuzz testing for REST APIs to identify vulnerabilities, crashes, and input validation flaws through malformed payloads.

API Security Fuzzer

Automates security fuzz testing for REST APIs to identify vulnerabilities like SQL injection, XSS, and input validation failures.

Accessibility Test Scanner

Performs automated accessibility audits to ensure WCAG compliance and improve web application inclusivity.

Accessibility Test Scanner

Performs comprehensive web accessibility audits to ensure WCAG compliance, ARIA validation, and inclusive user experiences.

CORS Policy Validator

Validates Cross-Origin Resource Sharing (CORS) configurations to identify security vulnerabilities and ensure robust web application protection.

Access Control Auditor

Audits and identifies vulnerabilities in access control implementations across cloud environments and applications.

Access Control Auditor

Audits IAM policies, network ACLs, and application permissions to identify security vulnerabilities and misconfigurations.

CORS Policy Validator

Analyzes and validates Cross-Origin Resource Sharing (CORS) configurations to identify security vulnerabilities and ensure compliant web application access.

Atelier Testing & TDD

Implements a robust stub-driven TDD workflow and layer boundary testing for functional core and effectful edge architectures.

Penetration Testing & Security Auditing

Automates web application security assessments to identify vulnerabilities and generate comprehensive penetration test reports.

Dapr Middleware Validator

Validates Dapr HTTP middleware configurations to ensure security best practices, correct pipeline ordering, and proper secret management.

Access Control Auditor

Audits access control implementations and IAM policies to identify security vulnerabilities, misconfigurations, and privilege escalation risks.

Root Cause Tracing

Systematically identifies and resolves the original triggers of complex bugs by tracing execution chains backward from the point of failure.

Dapr Security Scanner

Audits Dapr component configurations for security vulnerabilities, hardcoded secrets, and compliance with infrastructure best practices.

WordPress Security Review

Performs systematic security audits and vulnerability analysis for WordPress themes, plugins, and custom code.

Security Audit Reporter

Generates comprehensive security audit reports and compliance assessments to identify vulnerabilities and prioritize system remediation.

Web Penetration Tester

Automates security assessments and vulnerability scans for web applications and APIs to identify OWASP Top 10 threats.

Spring Boot Security Implementation

Implements secure authentication and authorization patterns for Spring Boot 4 using Spring Security 7's mandatory Lambda DSL.

Vue.js Testing Best Practices

Implement robust test suites for Vue.js applications using Vitest, Vue Test Utils, and Playwright with industry-standard patterns.

Test-Driven Development (TDD) Suite

Implements systematic Test-Driven Development using the Red-Green-Refactor-Commit cycle and Baby Steps methodology to ensure high-quality, reliable code.

BDD Requirements Manager

Generates standardized BDD requirements in Gherkin format with deep domain integration and automated documentation.

OWASP Security Reviewer

Conducts comprehensive security audits and vulnerability detection based on the OWASP Top 10 framework.

Test Data Generator

Generates realistic, schema-compliant test data for software development, database population, and automated testing scenarios.

Binary Analysis & Reverse Engineering

Analyzes binary files and firmware to extract strings, identify file signatures, and explore raw data using industry-standard tools.

Security Audit & Compliance Pro

Conducts comprehensive security audits, vulnerability scans, and compliance checks across codebases and infrastructure configurations.

Data Privacy & Compliance Scanner

Scans codebases and configuration files to identify PII leaks, privacy vulnerabilities, and regulatory compliance risks like GDPR and HIPAA.

Dependency Security & Version Checker

Analyzes project dependencies to identify security vulnerabilities, outdated packages, and license compliance issues across multiple package managers.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor workflow by requiring mandatory failing tests and execution evidence before any production code is written.

Frontend E2E User Journeys

Automates critical frontend user workflows using resilient end-to-end testing patterns and the Page Object Model.