Security & Testing Agent Skills

Vulnerability Scanner

Identifies and reports security vulnerabilities, CVEs, and configuration weaknesses across your codebase and project dependencies.

SimpleCov Test Coverage Agent

Analyzes and improves Ruby and Rails test coverage using SimpleCov and automated quality metrics.

Cucumber & Gherkin BDD

Implements Behavior-Driven Development (BDD) using Gherkin syntax and Cucumber step definitions across multiple programming languages.

Plugin Auditor

Performs comprehensive security and compliance audits for Claude Code plugins to ensure high-quality standards and marketplace readiness.

Code Review Correctness

Analyzes source code to identify complex logic bugs, unhandled edge cases, and critical error handling failures before they reach production.

JavaScript Unit Testing Expert

Generates maintainable, reliable JavaScript and TypeScript unit tests using Jest and industry-standard patterns.

Claude Plugin Auditor

Automates security, compliance, and best practice audits for Claude Code plugins to ensure production-readiness and marketplace standards.

CORS Policy Validator

Validates Cross-Origin Resource Sharing (CORS) configurations to identify security vulnerabilities and ensure policy compliance.

Claude Plugin Validator

Automates the validation of Claude Code plugin structures, schemas, and security compliance to ensure adherence to repository standards.

Mutation Test Runner

Validates test suite quality by introducing code mutations and analyzing the ability of tests to detect logic changes.

Test Coverage Analyzer

Analyzes code coverage metrics and identifies untested code to improve software quality and test suite reliability.

System Performance Testing

Automates the design, execution, and analysis of load, stress, and endurance tests to identify system bottlenecks and optimize performance.

Solidity Security Patterns

Implements secure smart contract development patterns and audits Solidity code for common blockchain vulnerabilities.

Test Orchestrator

Manages complex test execution workflows with dependency mapping and intelligent parallelization to optimize development cycles.

Snapshot Test Manager

Streamlines the analysis and updating of snapshot test suites across major JavaScript testing frameworks.

SQL Injection Detector

Identifies and remediates SQL injection vulnerabilities in your codebase to ensure robust application security.

Regression Test Tracker

Automates the identification and execution of regression tests to ensure software stability and prevent code regressions.

Smart Contract Generator

Generates secure, production-ready Solidity smart contracts using OpenZeppelin standards and gas-efficient coding patterns.

Browser Compatibility Tester

Automates cross-browser and cross-device testing to identify UI bugs and ensure consistent web application performance.

Security Headers Analyzer

Analyzes HTTP security headers for any domain to identify vulnerabilities and provide actionable improvement recommendations.

Secrets Manager Integrator

Automates the integration of secrets management services like HashiCorp Vault and AWS Secrets Manager into your infrastructure and application code.

Web3 Smart Contract Testing

Facilitates comprehensive smart contract testing using Hardhat and Foundry to ensure security and gas efficiency in blockchain applications.

Playwright Best Practices

Enhances Claude Code with expert guidance for writing reliable, maintainable, and accessible Playwright end-to-end tests.

HIPAA Compliance Checker

Scans codebases, infrastructure configurations, and documentation to identify potential HIPAA compliance violations and security risks.

SAST Security Configuration

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security policies across the software development lifecycle.

Verified Completion Guard

Enforces rigorous verification and evidence-based reporting before claiming task completion or submitting code changes.

Testing Strategy Assistant

Designs comprehensive QA strategies and systematic testing workflows to ensure high-quality, production-ready code.

Memory Forensics

Master memory acquisition and forensic analysis to investigate security incidents and analyze malware behavior from RAM captures.

Bats Testing Patterns

Provides comprehensive guidance and implementation patterns for the Bash Automated Testing System (Bats) to ensure robust shell script quality.

Dependency Upgrade & Framework Migration

Manages major software dependency upgrades through compatibility analysis, staged rollout strategies, and comprehensive validation testing.