Security & Testing Agent Skills

Security-First Guardrails

Implement proactive security safeguards to prevent OWASP vulnerabilities across authentication, database queries, and external API integrations.

Code Quality Guardrail

Enforces a rigorous quality framework by mandating structured planning, validation phases, and best-practice adherence before any code is modified.

Dependency Check & Optimization

Evaluates and optimizes project dependencies by suggesting native alternatives and verifying package health before installation.

Test-Driven Development (TDD) Guide

Enforces a strict Red-Green-Refactor workflow by generating failing tests before implementation to ensure high code quality and test coverage.

Dead Code Refactor

Safely removes unused code, exports, and dependencies through automated analysis and rigorous test-driven verification.

Automated Test Coverage Optimizer

Analyzes codebase test coverage reports to automatically generate missing unit, integration, and end-to-end tests.

BDD Feature Discovery

Facilitates interactive Behavior-Driven Development sessions to explore system requirements, define business rules, and generate structured Gherkin feature files.

Critic Agent

Provides skeptical, second-opinion reviews of implementation plans and conclusions to identify logical flaws and untested assumptions.

AcademicOps QA & Verification

Provides comprehensive quality assurance, verification, and criteria design to ensure code and agent sessions meet rigorous standards.

Aristotle Formal Math Prover

Translates natural language mathematical queries into Lean 4 and generates verified formal proofs or counterexamples using the Aristotle API.

QA Agent Team

Deploys a specialized team of autonomous AI agents to perform comprehensive end-to-end quality assurance across visual, functional, and UX dimensions.

OpenSpec Implementation Verifier

Verifies that code implementations align perfectly with specification, task, and design artifacts before archiving changes.

Test-Driven Development Mastery

Enforces a rigorous Red-Green-Refactor workflow to ensure high-quality, verified production code through strict TDD principles.

Ecodesign & Green IT Audit

Analyzes web applications to improve energy efficiency and digital sobriety using industry-standard eco-design practices.

Claude Eval Harness

Implements a formal evaluation framework for Claude Code sessions using Eval-Driven Development (EDD) principles.

PICT Test Designer

Generates optimized pairwise test cases and combinatorial models from software requirements or code.

TDD Workflow Enforcer

Implements a rigorous test-driven development cycle ensuring 80% code coverage across unit, integration, and end-to-end tests.

Verification Loop

Standardizes code quality through a rigorous six-phase verification process covering builds, types, linting, tests, security, and diffs.

Shell Script Input Validation

Protects shell scripts from command injection vulnerabilities by validating user-provided input against dangerous patterns.

Eleven-Category Test Structure for iTerm

Standardizes iTerm shell script testing using a comprehensive 11-category framework to ensure robust coverage and reliability.

Shell Test Mocking Pattern

Mocks external shell commands using PATH overrides to verify script logic and argument passing without executing real binaries.

Auth Status Diagnostic

Audits and verifies local OAuth credentials stored in 1Password to ensure a healthy development environment.

1Password Auth Preflight

Validates 1Password credential injection to ensure development environments start without authentication failures.

Audit Fleet Consolidation

Consolidates multiple specialist audit reports into a unified, executive-level artifact while maintaining strict data schema integrity.

Audit Fleet SQL Todo Tracker

Manages multi-lane audit progress using SQL-based task tracking and strict contract compliance gates.

Local Auth Setup (1Password)

Automates secure OAuth credential injection for local development using the 1Password CLI.

Local Auth Teardown

Cleans up local authentication artifacts and environment templates to revert your project to its original state.

Audit Fleet Evidence Policy

Enforces rigorous quality control and standardized evidence reporting for software audits and system findings.

Audit Fleet Orchestration

Orchestrates multi-lane security and quality audits using deterministic report contracts and synchronized consolidation.

1Password Auth Rotator

Automates the rotation and updating of specific local development credentials stored within 1Password vaults.