Security & Testing Agent Skills

Bulloak BTT Architect

Generates structured Bulloak tree specifications and Solidity test scaffolds using the Branching Tree Technique.

Test Skill

Verifies the functionality of the OpenCode Skills Plugin API through script execution, file reading, and skill discovery.

ExUnit Test Framework

Streamlines Elixir testing by automating ExUnit test generation and execution with structured JSON reporting.

Security Architecture Navigator

Routes users to specialized security architecture skills including threat modeling, compliance mapping, and secure design patterns.

Codex CLI Automation & Testing

Integrates the Codex CLI with Claude Code to automate testing, debugging, and complex code analysis using gpt-5-codex.

System Architect

Evaluates architectural quality, catalogs technical debt, and generates risk-based improvement roadmaps for legacy and complex codebases.

Patch Engineer

Evaluates and improves security patches with senior-level expertise in vulnerability remediation, secure coding patterns, and regression prevention.

Security Custom Rules

Empowers developers to design, validate, and implement tailored security linting rules using Semgrep and Bandit syntax.

Debugging Methodology

Implements systematic, scientific processes to identify, reproduce, and resolve complex software defects and performance bottlenecks.

Quality Engineering Strategy

Implement comprehensive quality engineering practices across the software lifecycle, from automated testing to production observability.

Security Checklist & Audit Guide

Audits application code and provides implementation patterns to mitigate OWASP Top 10 vulnerabilities and data breaches.

Testing Strategy & Quality Standards

Establishes comprehensive testing frameworks, coverage requirements, and automated quality assurance patterns across multiple programming environments.

Intelligent Test Generation Framework

Automates the discovery, prioritization, and generation of robust integration and unit tests across multiple technology stacks.

GitLab Stack Secrets Manager

Manages secure Docker secrets for GitLab stack projects by enforcing proper storage, permissions, and migration from environment variables.

Foundry Test Factory Generator

Generates Zenstruck Foundry factories for PHP entities to streamline automated testing workflows.

PHPStan Error Resolver

Automatically detects and resolves PHPStan static analysis errors by iteratively fixing type issues and code inconsistencies.

CCPM Code Review & Verification

Enforces rigorous quality verification gates and structured code reviews within the CCPM project management ecosystem.

Ansible Testing & Linting

Automates Ansible playbook validation through comprehensive linting, syntax checking, and idempotency testing strategies.

Auth Smoke Testing

Automates authentication and authorization smoke tests to validate security flows during release cycles.

Systematic Debugging

Enforces a rigorous, four-phase debugging framework to identify root causes and implement verified fixes without trial-and-error thrashing.

Secure Flow

Integrates secure-by-default coding practices, threat modeling, and vulnerability remediation into the software development lifecycle.

Skill Review

Conducts comprehensive 9-phase audits of Claude skills to ensure documentation accuracy, code consistency, and compliance with the latest API standards.

Debugging Strategies

Employs systematic methodologies and advanced profiling tools to identify, isolate, and resolve complex software bugs across multiple tech stacks.

Hook Development for Claude Code

Automates and secures Claude Code workflows using event-driven hooks for tool validation and session management.

SaaS Tenant Data Isolation

Implements advanced cryptographic isolation and secure key management for multi-tenant SaaS applications.

Secrets Management

Designs and implements secure storage, rotation, and lifecycle patterns for credentials, API keys, and certificates.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, mocking, and fixtures to ensure code reliability and high coverage.

Cloudflare Turnstile Integration

Protects web applications and forms from bot traffic using Cloudflare's privacy-focused CAPTCHA alternative.

Chaos Engineering Fundamentals

Implements proactive resilience testing through controlled fault injection experiments to discover system weaknesses before they cause outages.

GDPR Compliance Planner

Provides comprehensive guidance and implementation patterns for building GDPR-compliant data systems and privacy controls.