Security & Testing Agent Skills

Enterprise Readiness Assessment

Assess and enhance software projects for enterprise-grade security, quality, and supply chain automation.

Security Audit & Secure Coding

Conducts comprehensive security audits and implements OWASP-aligned secure coding patterns for PHP applications.

Playwright E2E Testing

Generates robust, maintainable Playwright end-to-end tests using fixtures and accessibility-first best practices.

Security Auditing

Conducts comprehensive security audits to identify and remediate vulnerabilities across authentication, input validation, and API implementation.

Accessibility Auditing

Conducts comprehensive WCAG compliance audits and identifies inclusive design barriers across codebases, UI components, and live web applications.

RSpec Testing

Generates and refactors high-quality, maintainable RSpec tests for Ruby on Rails applications following industry-standard best practices.

Security Audit

Performs comprehensive security reviews of Agent Skills to identify vulnerabilities, malicious patterns, and unauthorized data access.

Ledger Registry

Manages system ledgers by verifying data integrity via checksums and maintaining a centralized manifest of active modules and energy-aware preferences.

Have I Been Pwned Security Integration

Integrates the Have I Been Pwned API to check for compromised accounts, passwords, and data breaches within security workflows.

Performance Testing Standards

Establishes production-grade performance testing protocols including load, stress, and soak testing using industry-standard tools like k6 and JMeter.

Security Scanning

Automates vulnerability detection across codebases, dependencies, and secrets using industry-standard security tools.

Code Testability Reviewer

Audits codebases for testability design patterns and identifies business logic entangled with side effects.

Developer Specialist

Accelerates software development using TDD, minimal diffs, and context-driven design to ensure high-quality, maintainable code.

Minitest Coder

Writes idiomatic and comprehensive Minitest tests for Ruby on Rails applications.

GitHub Code Review

Conducts high-signal, deep-dive code reviews for GitHub pull requests by analyzing diffs for bugs, security vulnerabilities, and performance issues.

NIST Compliance Standards

Implements NIST security standards and best practices to ensure production-grade software compliance and vulnerability prevention.

Source Finder

Locates and validates source code repositories for Python packages using PyPI metadata and web search.

License Finder

Deterministically identifies license information for Python packages by analyzing PyPI metadata and scanning source repositories.

Salesforce Connected Apps & Security Architect

Automates the creation, management, and security validation of Salesforce Connected Apps and External Client Apps with specialized OAuth configurations.

MSW API Mocking

Simplifies network-level API mocking for frontend testing using standardized Mock Service Worker (MSW) patterns.

Testcontainers for Go

Automates the setup and management of Docker-based integration tests for Go applications using pre-configured modules and best practices.

Browser Performance Benchmarking

Benchmarks Zig-based WHATWG Stream implementations against browser engines to ensure high-performance compatibility and functional parity.

Vaadin Playwright Tester

Generates robust Playwright integration tests for Vaadin views to ensure UI reliability in real browser environments.

TDD Methodology Expert

Enforces strict Test-Driven Development cycles to ensure high code quality and comprehensive test coverage.

Vaadin Karibu Test Writer

Generates robust, browserless Karibu unit tests for Vaadin views to ensure server-side UI logic integrity.

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and role-based access control.

Web App Testing & Automation

Automates local web application testing and UI verification using Playwright scripts and integrated server management.

Security Audit & Reporting

Generates comprehensive security audit reports, risk assessments, and OWASP Top 10 compliance mappings from vulnerability scan data.

Security Fixer

Generates high-quality, automated security patches to remediate vulnerabilities like SQL injection, XSS, and hardcoded secrets.

Salesforce Apex Expert

Generates and reviews production-ready Salesforce Apex code using 2025 best practices and a rigorous 150-point quality scoring system.