Security & Testing Agent Skills

Plugin Tester for Violet

Validates and audits Violet AI plugins to ensure structural integrity, schema compliance, and content quality before deployment.

Global Validation

Implements comprehensive end-to-end data validation and sanitization across client and server layers to ensure application security and data integrity.

QA Audit for Claude Code Cloud

Automates comprehensive QA audits and regression testing for the Claude Code Cloud web application to ensure UI stability and flow integrity.

Advanced Compliance & Audit Evidence

Automates audit evidence collection and compliance validation for SLSA and OpenSSF standards.

SAST Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Code Quality & Testing Accelerator

Enforces high-standard code quality through automated testing strategies, comprehensive quality gates, and systematic review practices.

Solidity Security & Smart Contract Audit

Implements industry-standard security patterns and vulnerability mitigations for Solidity smart contracts to prevent high-risk exploits.

Security & Privacy Engineering

Manages security policies, privacy compliance, vendor assessments, and incident response coordination for technical organizations.

Brutal Codebase Audit

Audits codebases for architectural rot, security vulnerabilities, and bugs using parallel AI agents to provide unfiltered, actionable fixes.

Error Handling Patterns

Implements robust error handling strategies and resilient architectural patterns across multiple programming languages.

Automated Mock & Stub Generator

Generates comprehensive mock data, stub functions, and test datasets to isolate code environments and accelerate automated testing.

Security Review

Performs comprehensive security audits to identify vulnerabilities, hardcoded secrets, and injection risks within your codebase.

Test Generation Integration

Integrates specialized testing plugins and provides intelligent fallbacks to streamline unit test generation across multiple frameworks.

TDD Workflow & Test Automation

Enforces a rigorous Test-Driven Development cycle to ensure high-quality code with 80%+ test coverage.

Git Repository Standards

Enforces consistent repository naming, directory structure, documentation requirements, and security compliance for Git projects.

Roadmap Discovery

Automates comprehensive codebase audits to identify technical debt, security risks, and performance bottlenecks across multiple domains.

Tech Lead Code Reviewer

Enforces technical standards and manages engineering workflows by validating code implementations against architectural specifications.

Testing Best Practices

Implements standardized testing patterns, architectural pyramids, and TDD best practices for robust software development.

Security Code Review

Identifies security vulnerabilities, assesses risks using OWASP standards, and provides actionable remediation guidance for production-grade code.

JWT Authentication for GitHub Apps

Generates JSON Web Tokens (JWTs) for GitHub App authentication, installation management, and discovery workflows.

AI Agent Guardrails Generator

Generates comprehensive security guardrails and safety policies for AI agents to ensure controlled and auditable operations.

STRIDE Threat Modeling Assistant

Generates comprehensive STRIDE-based threat models and security requirements to identify and mitigate risks during software design.

Dual-AI Code Review

Enhances code quality by employing a two-agent Evaluator-Optimizer workflow to automatically write, verify, and refine implementations.

Trivy Security Scan

Scans containers and dependencies for vulnerabilities using Trivy to ensure production-ready security compliance.

Clerk Incident Runbook

Streamlines incident response for Clerk authentication issues with automated diagnostics, mitigation scripts, and recovery procedures.

OpenCode Bug Fix Assistant

Streamlines bug fixing workflows by preventing regressions, managing large logs via memory, and ensuring minimal code diffs.

Automated Test Generator

Generates comprehensive unit tests, mocks, and edge-case scenarios across multiple programming languages and frameworks.

Test Doubles Generator

Generates automated mocks, stubs, spies, and fakes for unit testing by analyzing code dependencies and framework requirements.

QA Test Case Generator (Traditional Chinese)

Generates comprehensive, code-driven QA test cases in Traditional Chinese by analyzing TypeScript components and templates.

Mobile App Testing Suite

Automates the creation and execution of end-to-end tests for iOS and Android applications using industry-standard frameworks.