Security & Testing Agent Skills

Dependency Security Audit

Audits project dependencies for known CVEs and security vulnerabilities across multiple package ecosystems.

Vendor Due Diligence Framework

Assesses IT service providers and technology vendors through structured risk evaluations and regulatory compliance checklists.

Formal Specification Architect

Generates rigorous formal specifications for complex systems using TLA+, SysML, and state machines to ensure safety and reliability.

Gherkin BDD Converter

Converts between Gherkin/BDD scenarios and various specification formats like EARS, canonical markdown, or inline acceptance criteria.

Gemini Code Analyzer

Analyzes source files via Gemini CLI to provide deep insights into security, performance, architecture, and potential bugs.

Claude Rule Auditor

Validates and optimizes Claude Code rule files to ensure high-quality, compliant AI behavior across projects.

E2E Test Failure Resolver

Analyzes failed end-to-end tests and automatically implements fixes based on error logs and screenshot evidence.

GDPR Compliance Assessor

Conducts comprehensive GDPR compliance audits and privacy impact assessments for data processing systems.

PCI-DSS Compliance Assessor

Conducts comprehensive PCI-DSS scope assessments and compliance reviews for payment card handling systems.

Skill Auditor

Audits Claude Code skills for quality, compliance, delegation patterns, and long-term maintainability.

Multi-Identity Git Configuration

Configures directory-scoped Git identities to automate switching between work and personal emails, GPG keys, and SSH credentials.

HIPAA Compliance Assessor

Conducts comprehensive HIPAA compliance assessments for healthcare systems and applications handling Protected Health Information (PHI).

MCP Security & Config Auditor

Audits Model Context Protocol (MCP) server configurations to ensure security, compliance, and optimal performance across project and global settings.

Comprehensive Code Review

Automates multi-tiered code audits for security, performance, and quality using specialized AI agents and consensus-based validation.

Audit Settings

Audits Claude Code configuration files for security vulnerabilities, schema compliance, and sensitive information exposure.

BDD Acceptance Criteria Generator

Generates testable, BDD-compliant acceptance criteria in Given-When-Then format from user stories.

Secrets Scanner

Scans codebases for hardcoded API keys, credentials, and sensitive data patterns to prevent security breaches.

Test Pyramid Analyzer

Evaluates test distribution across unit, integration, and end-to-end levels to optimize testing strategy and software quality.

Compliance Framework Mapper

Maps security controls across multiple frameworks like ISO 27001, SOC 2, and NIST CSF to create a unified compliance strategy.

Security Auditor

Conducts comprehensive security audits on source code to identify vulnerabilities based on OWASP Top 10 and CWE standards.

Plan Test Data Strategy

Generates comprehensive test data strategies including synthetic generation, PII anonymization, and environment-specific management.

Open Source License Scanner

Analyzes project dependencies to ensure open-source license compliance, detect conflicts, and generate detailed legal reports.

Security Architecture Reviewer

Conducts comprehensive security audits and Zero Trust assessments to identify vulnerabilities and provide prioritized remediation guidance.

Systematic Test Case Generator

Generates comprehensive test cases using formal design techniques like boundary value analysis and equivalence partitioning to ensure rigorous feature coverage.

Automated Test Suite Runner

Executes project-wide validation suites and generates structured JSON reports for automated debugging and quality assurance.

Hook Auditor

Audits Claude Code hooks for quality, compliance, and maintainability to ensure reliable and secure AI automation workflows.

Test Automation ROI Analyzer

Evaluates test cases to calculate the financial and operational return on investment for automation prioritization.

End-to-End Test Runner

Executes end-to-end test specifications to validate user journeys and report results with automated screenshots.

IEEE 829 Test Strategy Generator

Generates comprehensive, industry-standard test strategy documents following the IEEE 829 framework to align quality assurance with project goals.

Claude LSP Configuration Auditor

Audits and validates Language Server Protocol (LSP) configurations to ensure seamless code intelligence and plugin compliance.