Security & Testing Agent Skills

API Security Fuzzer

Automates REST API fuzz testing to identify security vulnerabilities, input validation failures, and unexpected edge cases.

Root Cause Tracing

Diagnoses software defects by tracing errors backward to their source instead of applying superficial symptom-level patches.

Systematic Debugging

Implements a rigorous five-step methodology to eliminate guesswork and resolve software bugs through reproduction, isolation, and root-cause analysis.

Verification Before Completion

Enforces strict command-based verification and evidence gathering before any task is marked as complete.

Plugin Checker

Validates and audits Claude Code plugin structures to ensure compliance with official specifications and best practices.

Defense in Depth

Implements a multi-layered validation strategy to identify and resolve bugs across syntax, logic, and integration phases before deployment.

Rust Code Debugger

Diagnoses and resolves Rust compiler errors, borrow-checker conflicts, and runtime panics with idiomatic solutions.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure all code is verified by failing tests before implementation.

BDD Test Case Architect

Generates comprehensive BDD test specifications and traceability matrices by analyzing project features and business logic.

Security Review & Best Practices

Audits code for vulnerabilities and enforces industry-standard security patterns for authentication, data handling, and API development.

Frontend Visual Regression

Verifies UI correctness through automated screenshot comparisons and browser DevTools auditing to prevent visual regressions.

Configuration Audit

Performs automated daily configuration audits and provides actionable improvement suggestions for your project environment.

Verification Loop

Automates a multi-phase verification process to ensure code quality through builds, type checking, testing, and security scans.

Cross-AI Code Verifier

Verifies code quality and logic by cross-referencing implementation details across multiple AI models including GPT and Gemini.

Security Review & Audit

Performs comprehensive security audits and provides implementation patterns to protect applications against common vulnerabilities and data exposure.

Defense-in-Depth Validation

Implements multi-layered validation strategies to prevent deep-execution failures and make bugs structurally impossible.

Test-Driven Development (TDD)

Enforces strict Red-Green-Refactor cycles to ensure all production code is preceded by failing tests.

Async and Scheduled Unit Testing

Simplifies unit testing for Spring @Async and @Scheduled tasks using JUnit 5, Mockito, and Awaitility.

ISO 27001 Security & Compliance Manager

Implements ISO 27001 frameworks and cybersecurity risk assessments specifically tailored for HealthTech and MedTech organizations.

JavaScript Unit Test Implementation

Automates the creation, configuration, and coverage analysis of Jest unit tests for JavaScript applications.

ShellCheck Configuration Expert

Optimizes shell script quality by configuring and implementing ShellCheck static analysis across development and CI/CD workflows.

Go Testing & Quality

Implements idiomatic Go testing patterns and best practices to ensure robust, maintainable, and high-performance codebases.

Smart Test Fixing Assistant

Systematically identifies, groups, and resolves failing tests in your codebase using intelligent error analysis and prioritized fixing strategies.

Spring Cache Unit Testing

Validates Spring Cache annotations and behavior using JUnit 5 and Mockito to ensure efficient data retrieval and invalidation logic.

Plan Marshall Quality Verification

Automates comprehensive quality checks, build verification, and error remediation loops within the Plan Marshall workflow.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure high-quality code through mandatory test-first implementation.

Security Attack Tree Construction

Constructs systematic attack path visualizations to identify security vulnerabilities and prioritize defensive gaps.

Compliance Management

Facilitates adherence to global security regulations and standards through structured controls, documentation templates, and audit preparation frameworks.

FDA Regulatory & HIPAA Consultant

Navigates complex FDA regulatory pathways, QSR compliance, and HIPAA requirements for medical device and healthcare software development.

Web Application Testing

Automates local web application testing and UI verification using specialized Playwright scripts and server management utilities.