Security & Testing Agent Skills

Pentest Checklist

Provides a structured methodology and comprehensive checklists for planning, executing, and remediating penetration testing engagements.

Firebase Authentication

Simplifies the integration of secure user authentication flows including OAuth, email/password, and phone verification using Firebase.

Quality Guardian

Enforces production-grade code quality standards, test coverage requirements, and UI design constraints during the development process.

Root Cause Tracing

Systematically traces bugs backward through call stacks to identify and fix the original source of invalid data.

Bats Testing Patterns

Provides comprehensive patterns and best practices for writing automated shell script tests using the Bats framework.

Better Auth for TypeScript & Cloudflare

Implements secure, self-hosted authentication for TypeScript applications with specialized support for Cloudflare Workers and D1 databases.

Supabase Auth SSR Setup

Configures secure authentication for Next.js App Router applications using Supabase SSR with cookie-based sessions and middleware protection.

NPM Package Maintenance

Optimizes and secures Node.js projects by automating dependency updates, vulnerability fixes, and package categorization.

TDD Failure Recovery

Recovers from unexpected test behaviors and TDD cycle issues using standardized rollback and diagnostic protocols.

Test-Driven Development (TDD) Workflow

Automates the Test-Driven Development lifecycle using a disciplined Red-Green-Refactor cycle to ensure high-quality, bug-free code.

Web App Testing Toolkit

Automates local web application testing and browser interaction using Playwright and integrated server management.

SMTP Penetration Testing

Conducts comprehensive security audits of SMTP servers to identify vulnerabilities like open relays, user enumeration flaws, and weak authentication.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality code through mandatory test-first implementation.

Security Review

Audits codebases for vulnerabilities and enforces industry-standard security patterns for data protection and authentication.

Eval Harness

Implements eval-driven development principles to systematically test, track, and validate AI-generated code quality.

Smart Contract Entry Point Analyzer

Identifies and categorizes state-changing entry points in smart contract codebases to streamline security audits and map attack surfaces.

70% Test Coverage Guard

Ensures all new code changes meet a 70% test coverage threshold while verifying that the full test suite, linting, and compilation remain passing.

Kubernetes Sealed Secrets Generator

Automates the creation and encryption of Kubernetes Sealed Secrets for secure storage in Git repositories.

Navigator CLI Testing

Provides a comprehensive framework for stress testing and validating the Navigator browser automation CLI.

TDD Workflow

Implements a rigorous Red-Green-Refactor cycle to ensure production code is testable, reliable, and lean.

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and fine-grained RBAC.

Test Case Fixer

Automates the identification, reproduction, and resolution of failing test cases through a structured debugging and verification workflow.

Better Auth Best Practices

Streamlines the integration of Better Auth into TypeScript projects with optimized configuration patterns and security-first implementation guides.

Security Code Auditor

Conducts comprehensive security audits and vulnerability checks to identify potential threats and compliance issues in source code.

Web Application Testing

Automates local web application testing and UI debugging using Playwright and managed server lifecycles.

Security Review Assistant

Conducts comprehensive security audits and implements defensive coding patterns for web applications, APIs, and smart contract integrations.

Automated Build & Test

Automatically detects, builds, and tests code changes across multiple programming languages and project types.

Verify Definition of Done

Automates the verification of completion criteria for development sessions and generates detailed audit reports.

Test Design Patterns

Implement robust, comprehensive testing strategies using industry-standard patterns and best practices for high-quality software delivery.

Debug Team Workflow

Orchestrates a structured full-repository debugging process including triage, bug logging, and verified fixes.