Security & Testing Agent Skills

Advanced Jest Testing Patterns

Implements robust Jest testing strategies using TDD, factory patterns, and comprehensive mocking techniques for high-quality codebase maintenance.

Web Acceptance Contracts

Standardizes command-based verification and artifact generation for web development tasks.

OpenSpec Change Verification

Validates that code implementations align perfectly with specified requirements, design documents, and task lists before archiving changes.

Technical Guardian

Protects codebase integrity by enforcing security standards, performance benchmarks, and offline-first architectural compliance.

OpenSpec Change Verifier

Validates that code implementations align perfectly with specifications, tasks, and design documents before archiving changes.

OpenSpec Change Verifier

Validates code implementations against specifications, tasks, and design documents to ensure completeness and correctness before archiving changes.

MoonBit PBT Workflow Guide

Implements and maintains robust Property-Based Testing workflows in MoonBit repositories using the QuickCheck framework.

Testing Strategy for Rust & Tauri

Implements comprehensive testing workflows for Rust, Tauri, and frontend applications using TDD and coverage standards.

Systematic Debugging

Eliminates trial-and-error coding by enforcing a rigorous, four-phase root cause analysis process before any code changes are made.

WCAG Accessibility Audit Patterns

Conducts comprehensive WCAG 2.2 accessibility audits through automated testing, manual verification, and detailed remediation strategies.

OpenSpec Change Verifier

Validates that code implementations align perfectly with specified tasks, design requirements, and technical documentation before archiving.

OpenSpec Change Verification

Verifies that code implementations align with specifications, tasks, and design documents using the OpenSpec framework.

Searchlite Unit Testing

Implements standardized patterns for writing hermetic, deterministic unit tests for the Searchlite embedded search engine.

SDLC Code Analyzer

Performs multi-domain codebase audits to identify bugs, technical debt, security vulnerabilities, and documentation gaps.

Consumer-Centric Test Coverage

Enhances microservice reliability by building robust, consumer-focused test suites that hit high code coverage targets.

Searchlite Bug Hunting Workflow

Implements a structured, reproduction-first workflow for identifying and fixing bugs within the Searchlite search engine ecosystem.

Adversarial Content Reviewer

Analyzes content through a skeptical lens to identify flaws, inconsistencies, and potential weaknesses.

Test Architecture & Design

Automates system-level testability reviews and epic-level test planning by detecting the current project phase.

Vitest Migration & Testing Guide

Accelerates the transition from Jest to Vitest and provides expert guidance on configuring high-performance TypeScript testing environments.

API Security Testing

Conducts comprehensive security audits and penetration tests on REST and GraphQL APIs to identify vulnerabilities like IDOR, injection, and authorization flaws.

Active Directory Attack Toolkit

Conducts professional Active Directory penetration testing and security assessments using industry-standard tools and methodologies.

Mobile App Pentesting

Conducts comprehensive security audits and penetration testing for Android and iOS mobile applications.

Cloud Security Exploitation

Identifies and exploits security misconfigurations across AWS, Azure, and GCP environments to harden cloud infrastructure.

Container Security & Escape Expert

Conducts deep security assessments and penetration tests for Docker and Kubernetes environments to identify and exploit vulnerabilities.

Security File Transfer Techniques

Facilitates advanced file transfers and data exfiltration across Linux and Windows using diverse protocols and living-off-the-land techniques.

Linux Privilege Escalation

Identifies and exploits Linux privilege escalation vectors including SUID binaries, sudo misconfigurations, and kernel vulnerabilities.

Network Service Enumeration

Performs professional-grade discovery, enumeration, and security assessment of network services and database protocols.

Password Attacks & Credential Cracking

Conducts professional password hash cracking, credential spraying, and authentication brute-force attacks using industry-standard tools.

Phishing and Social Engineering Toolkit

Conducts authorized social engineering assessments, phishing simulations, and credential harvesting to test organizational security awareness.

Web3 & Smart Contract Security

Audits and identifies vulnerabilities in smart contracts and Web3 applications using expert penetration testing techniques.