Security & Testing Agent Skills

Web3 Smart Contract Testing

Provides comprehensive testing strategies for Ethereum smart contracts using Hardhat and Foundry to ensure security, reliability, and gas efficiency.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Secrets Management & CI/CD Security

Implements secure secrets handling for CI/CD pipelines using industry-standard tools like Vault, AWS Secrets Manager, and platform-native solutions.

Testing Handbook Generator

Generates comprehensive security testing handbooks and strategy guides to streamline audit workflows.

Kubernetes Security Policy Expert

Implements production-grade Kubernetes security configurations including NetworkPolicies, RBAC, and Pod Security Standards.

Temporal Python Testing

Streamlines Temporal workflow testing in Python through automated time-skipping, activity mocking, and determinism validation.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

GitHub Repo Manager Self-Test

Executes and diagnoses the comprehensive test suite for the GitHub Repo Manager plugin to ensure reliable repository automation.

Requirement Quality Validator (speckit-checklist-zh)

Generates professional, domain-specific checklists to validate the quality, clarity, and completeness of software requirements.

Skill Reviewer

Maintains high quality standards for Claude Code skills through systematic auditing and a comprehensive 10-point quality checklist.

CVE Dependency Audit

Scans project dependencies across multiple programming languages to identify and report known security vulnerabilities and CVEs.

CVE Vulnerability Lookup

Retrieves detailed information about Common Vulnerabilities and Exposures (CVEs) and affected software versions directly within your development environment.

Security Reviewer

Enforces comprehensive security best practices and identifies potential vulnerabilities during the development process.

Verification Loop

Automates a multi-stage validation process including builds, type checking, linting, testing, and security scans to ensure production-ready code.

Spring Boot Security

Implements industry-standard security patterns and vulnerability mitigations for Java Spring Boot applications.

TDD Workflow

Enforces test-driven development practices and 80%+ code coverage for robust software delivery.

Spring Boot TDD

Implements a rigorous test-driven development workflow for Spring Boot applications to ensure high code quality and 80%+ test coverage.

Go Testing & TDD Patterns

Implements idiomatic Go testing patterns including table-driven tests, benchmarks, and fuzzing to ensure robust code quality.

Go Testing & TDD Patterns (zh-TW)

Implements idiomatic Go testing patterns including table-driven tests, benchmarks, and fuzzing to ensure robust code quality.

Workflow Validator

Ensures AI-generated JSON artifacts meet specific structural and content criteria through deterministic validation scripts.

Spring Boot Verification Loop

Automates a comprehensive quality gate for Spring Boot projects including builds, testing, security scanning, and code review.

Eval Harness for EDD

Implements an evaluation-driven development framework to measure and improve AI coding reliability through structured testing and metrics.

Validator Role

Implements rigorous software quality assurance, comprehensive test suites, and security-focused code reviews to ensure production-grade standards.

TypeScript Testing Suite

Masters professional TypeScript testing workflows by integrating runtime behavior verification with deep type-level correctness assertions.

Rails Code Quality Gates

Implements a multi-layered validation system for Ruby on Rails using Solargraph, Sorbet, and Rubocop to ensure enterprise-grade code standards.

Bug Diagnosis & Root Cause Analysis

Diagnoses and fixes complex software defects in .NET and Angular applications using a structured, evidence-based methodology.

RSpec Testing Patterns

Implements enterprise-grade RSpec testing patterns for robust Ruby on Rails application development.

Semgrep Static Analysis

Performs high-speed static analysis and security scanning to identify vulnerabilities and enforce custom code patterns.

Authenticated Route Tester

Tests and validates authenticated API endpoints using cookie-based JWT authentication and mock authentication patterns.

Testing Infrastructure

Implements comprehensive testing infrastructure and patterns for monorepos using Vitest, React Testing Library, and Storybook.