Security & Testing Agent Skills

SOC2 Audit & Compliance Helper

Automates SOC2 audit preparation by gathering security evidence, identifying compliance gaps, and generating detailed readiness reports.

Security Misconfiguration Finder

Scans infrastructure-as-code and application settings to identify and remediate security vulnerabilities and compliance gaps.

SOC2 Audit & Compliance Helper

Automates SOC2 evidence gathering and security control analysis to streamline audit preparation and identify compliance gaps.

Security Misconfiguration Finder

Detects and remediates security vulnerabilities within infrastructure-as-code and application configuration files.

Access Control Auditor

Audits access control implementations to identify vulnerabilities, misconfigurations, and privilege escalation risks in cloud and local environments.

Data Privacy Scanner

Scans codebase and configuration files to identify sensitive data leaks and ensure compliance with global privacy regulations.

Security Code Reviewer

Performs automated security audits to detect vulnerabilities like SQL injection, XSS, and insecure dependencies within your codebase.

Integration Test Runner

Automates the execution and environment management of comprehensive integration test suites within Claude Code.

Session Security Checker

Audits codebase session management to identify security vulnerabilities like session fixation and weak ID generation.

Plugin Auditor

Audits Claude Code plugins for security vulnerabilities, best practices, and repository compliance standards.

Accessibility & WCAG Scanner

Conducts automated accessibility audits to ensure web applications comply with WCAG 2.1/2.2 standards and ARIA best practices.

Claude Plugin Auditor

Automates security reviews and quality audits for Claude Code plugins to ensure repository compliance and production readiness.

Test Report Generator

Generates comprehensive test reports with coverage metrics, performance trends, and stakeholder-ready exports in multiple formats.

End-to-End Testing Adapter

Automates the creation of robust end-to-end test suites using Playwright, Cypress, and Selenium to ensure web application reliability.

Dependency Security Checker

Analyzes project dependencies to identify security vulnerabilities, outdated packages, and license compliance issues across multiple package managers.

Secrets Manager Integrator

Automates the integration of secrets management tools like HashiCorp Vault and AWS Secrets Manager to ensure secure credential handling.

Authentication Validator

Validates authentication implementations against industry security standards to identify vulnerabilities in JWT, OAuth, and session management.

Authentication Implementation Validator

Validates system authentication mechanisms against security best practices and industry standards to identify vulnerabilities.

Infrastructure Compliance Checker

Analyzes infrastructure configurations to ensure compliance with SOC2, HIPAA, and PCI-DSS industry standards.

Security Auditor Pro

Conducts comprehensive security audits of code, infrastructure, and configurations to identify vulnerabilities and ensure compliance.

Security Audit Reporter

Generates comprehensive security audit reports and compliance assessments to identify vulnerabilities and provide actionable remediation roadmaps.

Dependency Health & Security Audit

Analyzes project dependencies to identify security vulnerabilities, outdated packages, and license compliance issues across multiple ecosystems.

SSL/TLS Certificate Manager

Automates SSL/TLS certificate lifecycle tasks including expiry monitoring, renewals, and status tracking within Claude Code.

Access Control Security Auditor

Audits IAM policies, ACLs, and system permissions to identify security vulnerabilities and ensure compliance.

Smoke Test Runner

Executes automated smoke test suites to rapidly verify critical application functionality and system health.

Security Headers Analyzer

Evaluates HTTP security headers of any domain to identify vulnerabilities and provide actionable hardening recommendations.

API Test Automation

Automates the generation, execution, and validation of comprehensive test suites for REST and GraphQL APIs.

Vulnerability Scanner

Automates security audits by scanning source code, dependencies, and configurations for CVEs and potential exploits.

Security Audit Expert

Conducts comprehensive security audits across code, infrastructure, and configurations to identify vulnerabilities and ensure regulatory compliance.

Contract Test Validator

Validates API contracts using Pact and OpenAPI to ensure seamless compatibility between service providers and consumers.