Security & Testing Agent Skills

BMAD Test Framework Architect

Initializes production-ready test framework architectures to ensure robust software quality and scalable validation structures.

Ark Vulnerability Fixer

Streamlines CVE research and security patch workflows for Ark using CIRCL API integration and automated dependency analysis.

Test Traceability

Maps project requirements to test cases to ensure comprehensive coverage and informed quality gate decisions.

Smart Contract Generator

Generates secure, production-ready Solidity smart contracts using OpenZeppelin standards and industry best practices.

ATDD Test Architecture

Generates comprehensive API and end-to-end acceptance tests before implementation to ensure code quality and requirement alignment.

Team Review

Orchestrates a multi-agent team of specialized AI reviewers to perform comprehensive security, architectural, and performance code reviews.

Dependency Reviewer & Security Auditor

Audits project dependencies for security vulnerabilities, license compliance risks, and version staleness across multiple programming ecosystems.

Intent Sink Validator

Validates and sanitizes intent-centric architectures to ensure safety and well-formedness before execution.

Systematic Bug Fixer

Resolves software defects through automated test-driven reproduction, root cause analysis, and rigorous regression verification.

Test Suite Generator

Generates comprehensive, framework-agnostic test suites with deep coverage analysis and parallel test writing.

OWASP Security Reviewer

Performs automated security audits and OWASP Top 10 compliance checks on pull requests, commits, or entire codebases.

Safe Code Refactoring

Refactors complex codebases safely using characterization tests, incremental changes, and automated verification to ensure behavior preservation.

Playwright E2E Testing

Enforces standardized end-to-end testing workflows using Playwright with custom fixtures and Page Object Models.

Theater Code Detection

Identifies non-functional code that appears complete but lacks operational logic to ensure production reliability.

DevFlow Quality Validation

Automates parallel project validations including tests, linting, and type checking to ensure code quality and build integrity.

Testcontainers for Go

Simplifies Go integration testing by providing lightweight, throwaway Docker instances for databases, message queues, and cloud services.

Project Bootstrap for Doc Detective

Automatically initializes Doc Detective workflows by detecting documentation, generating configurations, and creating validated tests.

QA Regression Testing with Playwright

Automates browser-based regression testing using a modular Playwright framework and reusable test skills.

Python Code Reviewer

Audits Python source code for PEP8 compliance, modern type hints, and architectural anti-patterns using industry-standard tooling.

GitHub Copilot for Claude

Integrates GitHub Copilot's advanced coding capabilities into Claude for high-performance code analysis, debugging, and refactoring.

React Test Coverage Optimizer

Identifies test gaps and generates comprehensive unit, integration, and E2E tests to ensure high-quality React applications.

Anthropic Agent Evaluations

Implements rigorous evaluation frameworks and testing patterns for AI agents based on Anthropic's engineering standards.

Go Architecture Test Manager

Enforces Hexagonal Architecture and DDD constraints by automatically generating and updating Go architecture tests.

React & TypeScript Code Reviewer

Conducts comprehensive quality audits for React and TypeScript applications to ensure best practices, performance, and accessibility.

React TDD Feature Scaffolder

Generates complete, production-ready React features using a strict Test-Driven Development workflow and feature-based architecture.

Lean Proof Walk

Generates formal Lean 4 proof chains using a GF(3)-balanced triad of agents for sound mathematical verification.

Go Hexagonal & DDD Architect

Reviews Go codebases for Hexagonal Architecture compliance and Domain-Driven Design principles using automated tests and AI analysis.

Sharp Edges Security Auditor

Identifies error-prone API designs and dangerous configuration patterns to prevent security vulnerabilities and misuse.

LibFuzzer Security Testing

Automates the discovery of software vulnerabilities using coverage-guided fuzzing patterns and security best practices.

Burp Suite Security Testing

Conducts professional-grade web application security audits and penetration testing using the Burp Suite ecosystem.