Security & Testing Agent Skills

Bats Testing Patterns

Provides comprehensive patterns and best practices for writing production-grade unit tests for shell scripts using the Bats framework.

Frontend Accessibility

Implements semantic HTML, keyboard navigation, and ARIA standards to ensure web applications are inclusive and WCAG-compliant.

Smoke Test Runner

Executes automated smoke test suites to verify critical application health and core functionality instantly.

Load Test Runner

Generates and executes automated load tests and performance benchmarks using industry-standard tools like k6 and JMeter.

Security Requirement Extractor

Generates actionable security requirements, user stories, and test cases directly from threat models and business context.

Test Report Generator

Generates comprehensive test reports and coverage analysis across multiple frameworks to provide insights into software quality and testing trends.

Verification Before Completion

Enforces rigorous evidence-based reporting and mandatory verification commands before any task is marked as complete.

Dependency Checker

Analyzes project dependencies for security vulnerabilities, outdated packages, and license compliance across multiple programming languages.

OpenWebF DevTools Debugging

Debugs WebF application runtime issues using Chrome DevTools to inspect console logs, network requests, and DOM elements.

GDPR Compliance Scanner

Automates GDPR compliance audits by scanning applications and data systems for privacy violations and regulatory gaps.

Claude Code Permission Security

Manages enterprise-grade security policies and tool access controls for Claude Code environments.

SOC2 Audit Helper

Simplifies SOC2 compliance by automating evidence collection, security control analysis, and readiness report generation.

SDR Test Harness Runner

Automates regression testing and parameter sweeps for Software Defined Radio (SDR) signal processing using WaveCap-SDR.

Container Security Scanner

Identifies and mitigates security vulnerabilities within container images and orchestration configurations to ensure robust application deployment.

Data Privacy Scanner

Scans codebases and configurations to identify PII leaks, compliance violations, and potential data privacy vulnerabilities.

Invisible Auto-Debugging

Automatically repairs code errors and build failures while hiding technical complexity and stack traces from the user.

Automated OWASP Security Check

Automates OWASP-aligned security audits and vulnerability remediation on all AI-generated code.

Web App Testing Toolkit

Streamlines local web application testing and browser automation using Playwright-powered Python scripts and automated server management.

Verification Gate

Ensures project stability and code quality by running a silent, comprehensive validation suite before confirming task completion.

OpenWebF Security Suite

Conducts comprehensive security audits for OpenWebF applications focusing on remote content, XSS prevention, and store compliance.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure all production code is justified by a failing test.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure code reliability by requiring failing tests before any implementation code is written.

Security Code Review Agent

Conducts comprehensive security audits to identify vulnerabilities like SQL injection and XSS while providing actionable remediation guidance.

Secret Scanner

Scans codebases for exposed secrets, API keys, and credentials to prevent security vulnerabilities and data leaks.

DotNet Test Triage

Automates .NET test failure analysis by capturing failing cases and generating optimized rerun filters.

Security Vulnerability Validation

Validates security scan results by performing reachability analysis and generating proof-of-concept exploits to confirm real-world exploitability.

Condition-Based Waiting

Replaces arbitrary test timeouts with smart condition polling to eliminate race conditions and flaky test behavior.

OpenWebF Testing with Vitest

Sets up and optimizes Vitest and React Testing Library for OpenWebF applications to ensure high-quality, reliable code.

QA Strategy & Audit Consultant

Evaluates testing coverage, assesses quality processes, and provides strategic QA roadmaps for software projects.

Security Review

Implements industry-standard security protocols and audits code for vulnerabilities using comprehensive checklists and patterns.