Security & Testing Agent Skills

Playwright Test Fixer

Diagnoses and repairs failing or flaky Playwright end-to-end tests using a systematic debugging taxonomy.

Spring Boot Security Auditor

Implements and audits industry-standard security practices for Java Spring Boot applications, covering authentication, authorization, and vulnerability mitigation.

Spring Boot Verification Loop

Validates Spring Boot projects through automated builds, static analysis, comprehensive testing, and security scanning.

Test-Driven Development Workflow

Enforces a rigorous test-driven development cycle to ensure high-quality code with 80%+ coverage across unit, integration, and E2E tests.

Legacy Migration QA Verifier

Validates legacy code against QA test cases to ensure functional parity and completeness during migrations.

Runner Group Management

Implements strategic organization and security boundaries for GitHub Actions self-hosted runners to prevent lateral movement and repository compromise.

Secret Rotation Patterns

Automates credential lifecycle management and zero-downtime secret rotation within GitHub Actions workflows.

GitHub OAuth Authentication

Implements secure OAuth flows for GitHub Apps to enable user-context operations, device-based CLI authorization, and token management.

Kubernetes Runtime Security Enforcement (Phase 3)

Hardens Kubernetes production environments through runtime policy enforcement, image verification, and resource constraints using Kyverno.

SDLC Security Foundation (Phase 1)

Establishes essential SDLC security controls including secrets detection, branch protection, and commit verification to create a secure development environment.

GitHub Self-Hosted Runner Hardening

Secures self-hosted GitHub Actions runners using OS-level hardening, network isolation, and credential protection to prevent infrastructure compromise.

Refactor BDD Implementation

Refactors BDD components including Gherkin scenarios, step definitions, and feature code to eliminate technical debt while maintaining passing tests.

Security Scanning Workflows

Automates comprehensive security scanning by integrating SAST, dependency checks, and container vulnerability detection into CI/CD pipelines.

Skill Security Auditor

Secures AI agent development by scanning plugins and skills for malicious code, prompt injections, and supply chain vulnerabilities before installation.

Kubernetes Chaos Engineering

Automates resilience testing and fault injection for Kubernetes clusters using Chaos Mesh and LitmusChaos patterns.

Kyverno Image Security & Validation

Secures Kubernetes clusters by enforcing container image validation policies including registry allowlists, signatures, and vulnerability gates.

OpenSSF Scorecard Achievement Guide

Optimizes software security postures by providing comprehensive guidance on passing all 18 OpenSSF Scorecard checks and implementing secure engineering practices.

Risk Prioritization Framework

Streamlines security triage using objective metrics, CVSS interpretation, and decision trees to prioritize vulnerability remediation.

Kubernetes Incident Response Playbooks

Provides standardized templates for detecting, containing, and remediating Kubernetes security incidents with guided decision trees.

SLSA Toolchain Integration

Integrates SLSA provenance generation and dependency verification across Go, Node.js, and Python toolchains.

Kyverno Network Security Templates

Enforces robust Kubernetes network security policies including namespace isolation, Ingress TLS requirements, and service exposure restrictions.

Secure SDLC Hardening Roadmap

Implements a four-phase defense-in-depth strategy to secure the Software Development Lifecycle through automated gates, branch protection, and runtime enforcement.

Eval-Driven Development (EDD) Harness

Implements a formal evaluation framework for Claude Code sessions based on Eval-Driven Development principles to ensure reliable AI-generated code.

Moransa Demo Readiness Report

Generates comprehensive technical evidence reports to validate environment stability and API functionality before external presentations.

Senior SecOps Engineer

Implements senior-level security operations and verification protocols within OpenClaw-native engineering workflows.

Design Coverage Validator

Ensures architectural readiness by validating that all project requirements are mapped to specific components, APIs, and data models.

Web3 Smart Contract Testing

Validates and secures smart contracts using comprehensive Hardhat and Foundry testing frameworks.

GDPR Data Handling & Compliance

Implements GDPR-compliant data processing workflows including consent management, data subject rights, and automated retention policies.

Bats Shell Testing Patterns

Implements robust automated testing for shell scripts using the Bash Automated Testing System (Bats) to ensure script reliability and maintainability.

Authentication & Authorization Patterns

Implements secure access control systems using JWT, OAuth2, session management, and role-based permissions.