Security & Testing Agent Skills

Parallel Agent Dispatcher

Orchestrates multiple sub-agents to concurrently investigate and resolve independent test failures and bugs.

TDD Workflow for Claude Code

Enforces rigorous Test-Driven Development (TDD) practices with mandatory 80% coverage across unit, integration, and E2E tests.

Email Forensics

Analyzes email messages and mailbox archives to investigate phishing, business email compromise, and security threats.

Skill Validator

Ensures skill and Model Context Protocol (MCP) implementations align with their manifests by performing Codex-powered semantic comparisons of code against descriptions, preconditions, and effects.

SOX Compliance Guidelines

Implements rigorous financial reporting controls and audit trails to meet Sarbanes-Oxley (SOX) regulatory requirements.

MailHog Email Testing

Simplifies the setup, management, and automation of MailHog servers for local email testing and development workflows.

Better Auth Best Practices

Integrates and configures Better Auth, a comprehensive TypeScript authentication framework, using industry-standard security patterns.

Gemini CLI Integration

Analyzes massive codebases and complex directories by leveraging Google Gemini's large context window and flexible file-inclusion syntax.

Security, QA & Secure Coding

Implements robust security protocols, quality assurance standards, and OWASP-aligned coding practices for resilient software.

Testing Anti-Patterns

Enforces robust testing standards by preventing brittle mocks, production code pollution, and implementation-detail testing.

Subagent Skill Testing

Verifies skill reliability and pressure resistance through a quantitative TDD cycle and compliance scoring.

Systematic Debugging Framework

Eliminates trial-and-error fixing by enforcing a rigorous four-phase root cause analysis and debugging process.

TDD Workflow Pro

Enforces strict test-driven development cycles and comprehensive coverage requirements for robust, bug-free code implementation.

Testing Base

Enforces standardized testing conventions, file structures, and assertion patterns across unit, component, integration, and E2E tests.

Web Application Testing

Executes and manages Playwright E2E tests within Docker environments while ensuring reliable browser lifecycle management.

Hono Authentication

Implements secure, runtime-aware authentication and authorization systems for Hono-based TypeScript backends.

Cloudflare Security Hardening

Hardens Cloudflare Workers and Pages APIs using WAF-style protections, rate limiting, and secure implementation patterns.

Condition-Based Waiting

Replaces arbitrary timeouts with intelligent condition polling and event-based waiting to eliminate flaky tests and race conditions.

Eval Harness

Implements an Eval-Driven Development (EDD) framework to measure and improve AI coding reliability through structured testing and metrics.

SAYT IDE Task Configuration

Standardizes and executes build and test tasks using VS Code's tasks.json schema across multiple programming languages.

TDD Workflow

Implements a strict Red-Green-Refactor testing cycle based on Anthropic's best practices for robust software development.

Tinman Security Auditor

Audits and hardens system infrastructure and repository security to prevent credential leaks and vulnerabilities.

Golang Code Review

Conducts comprehensive Go code reviews by analyzing architecture, security, and test quality against idiomatic patterns and project-specific standards.

Root Cause Tracing

Systematically identifies the original source of software bugs by tracing execution flow backwards through the call stack.

Testing Skills with Subagents

Implements a rigorous testing methodology for Claude skills using subagent-driven pressure scenarios and test-driven development principles.

Requirements Traceability & Audit

Generates bidirectional traceability matrices mapping acceptance criteria to implementation evidence and test coverage.

Route Tester

Automates the testing and validation of authenticated API routes using cookie-based JWT authentication and mock testing patterns.

Quality Report

Generates comprehensive code quality audits by validating TypeScript types, linting, formatting, and analyzing test coverage.

Sigil Quarantine Review

Audits and manages quarantined code items to ensure security compliance before integration into active development environments.

Package Security Scanner

Audits Python and Node packages for malicious patterns and security vulnerabilities before they are installed in your environment.