Security & Testing Agent Skills

PHP Test Writer

Generates structured PHPUnit and Laravel tests following strict project conventions, factory patterns, and multitenancy best practices.

Testing Skills With Subagents

Ensures process documentation and skills remain effective under pressure by applying a rigorous Red-Green-Refactor testing cycle to prevent agent rationalization.

Verification Before Completion

Ensures code quality by requiring fresh command-line evidence before claiming any task is finished.

NuxtUI TDD Development

Implements Vue 3 components using NuxtUI through a strict test-driven development workflow involving Storybook interaction tests and automated TDD guardrails.

Authentication & Access Control

Implements secure user authentication and multi-tenant access control for Next.js 15 and Supabase applications using server-side patterns.

Claude Plugin Validator

Validates Claude Code plugin structures, configurations, and security practices to ensure seamless integration and deployment.

Root Cause Tracing

Traces software bugs backward from symptoms to their original source to prevent recurring issues and technical debt.

Verified Task Completion

Enforces strict validation of all coding tasks through live command output before allowing any claims of success.

Test Writer

Generates comprehensive unit, integration, and end-to-end tests following industry-standard patterns and best practices.

Systematic Debugging

Implements a rigorous, 5-step methodology to reproduce, isolate, and resolve software bugs without guesswork.

Systematic Debugging

Implements a rigorous five-step methodology to identify, isolate, and resolve software bugs without guesswork.

Root Cause Tracing

Eliminates technical debt by identifying and fixing the origin of software bugs rather than patching superficial symptoms.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to catch bugs through sequential syntax, unit, integration, and end-to-end testing cycles.

Defense in Depth Validation

Implements a multi-layered testing and validation framework to catch bugs across syntax, logic, integration, and user workflows.

OpenWebF Testing with Vitest

Sets up and optimizes Vitest and React Testing Library for OpenWebF applications to ensure high-quality, reliable code.

Dependency Evaluator

Evaluates the health and risk of programming dependencies through a systematic 10-signal analysis to prevent technical debt and security vulnerabilities.

Wasp Code Review

Performs deep-dive audits of Wasp framework applications to ensure architectural compliance, security, and performance standards.

Remediation Configuration Security

Provides actionable security fix patterns for configuration and deployment vulnerabilities across multiple programming languages.

xUnit v3 with Microsoft Testing Platform

Implements best practices and proper configurations for xUnit v3 test projects using the modern Microsoft Testing Platform (MTP).

PICT Test Designer

Generates optimized pairwise test suites by analyzing requirements and code logic using the PICT methodology.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure code reliability by requiring failing tests before any implementation code is written.

Smart Test Fixing

Systematizes the process of identifying, grouping, and fixing failing tests to restore suite health quickly and efficiently.

OpenWebF Security Suite

Conducts comprehensive security audits for OpenWebF applications focusing on remote content, XSS prevention, and store compliance.

Web App Testing Toolkit

Streamlines local web application testing and browser automation using Playwright-powered Python scripts and automated server management.

Role Permission Table Builder

Generates comprehensive role-based access control (RBAC) matrices and implementation code for secure application authorization systems.

Security Hardening Checklist

Performs comprehensive security audits and generates actionable hardening recommendations for web applications.

Language-Specific Security Vulnerability Patterns

Identifies language-specific security vulnerabilities across major programming stacks using optimized regex and grep patterns.

Vulnerability Patterns: Core

Detects universal security vulnerabilities and hardcoded secrets across all programming languages using standardized regex patterns.

Supabase Auth SSR Setup

Configures secure authentication for Next.js App Router applications using Supabase SSR with cookie-based sessions and middleware protection.

CSP Config Generator

Generates and configures strict Content Security Policy (CSP) headers for Next.js applications to mitigate XSS risks and control resource execution.