Security & Testing Agent Skills

Secrets Manager Integrator

Automates the secure integration and configuration of secrets management tools like HashiCorp Vault and AWS Secrets Manager into your infrastructure and application workflows.

Test-Driven Development (TDD) Suite

Implements systematic Test-Driven Development using the Red-Green-Refactor-Commit cycle and Baby Steps methodology to ensure high-quality, reliable code.

Security Headers Analyzer

Analyzes HTTP security headers to identify website vulnerabilities and provides actionable hardening recommendations.

Web3 Smart Contract Testing

Implements comprehensive testing frameworks and patterns for Solidity smart contracts using Hardhat and Foundry.

Secure Authentication Patterns

Implements industry-standard authentication and authorization patterns including JWT, OAuth2, and role-based access control for secure application development.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools for automated vulnerability detection across multiple programming languages.

JavaScript Testing Patterns

Implements professional testing strategies for JavaScript and TypeScript applications using Jest, Vitest, and Testing Library.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, mocking, and fixtures to ensure robust and maintainable codebases.

Temporal Python Testing

Implements comprehensive testing patterns for Temporal workflows using pytest, featuring time-skipping and determinism validation.

E2E Testing Patterns

Master end-to-end testing with Playwright and Cypress to build reliable, maintainable test suites that catch regressions and ensure deployment confidence.

Load Test Runner

Automates the creation and execution of performance load tests using k6, JMeter, and Artillery to identify application bottlenecks.

Browser Compatibility Tester

Automates cross-browser and multi-device testing to ensure seamless web application performance across different environments.

Test Data Generator

Generates realistic, schema-compliant test data for software development, database population, and automated testing.

OWASP Security Reviewer

Conducts comprehensive security audits and vulnerability detection based on the OWASP Top 10 framework.

Security Headers Analyzer

Analyzes a domain's HTTP security headers to identify vulnerabilities and provide actionable improvement recommendations.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor workflow by requiring mandatory failing tests and execution evidence before any production code is written.

Secret & Credential Scanner

Scans codebases for exposed secrets, API keys, and credentials using pattern matching and entropy analysis to prevent security breaches.

Load Balancer Tester

Automates the validation of traffic distribution, failover scenarios, and session persistence for load-balanced environments.

Encryption & Security Tool

Secures sensitive data and audits cryptographic implementations through automated encryption, decryption, and security vulnerability scanning.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to eliminate data-driven failures and make bugs structurally impossible.

Data Privacy Scanner

Scans codebases and configuration files to identify sensitive data exposure, PII leaks, and regulatory compliance violations.

Completion Verification Gate

Enforces rigorous quality standards by requiring mandatory evidence-based verification and TDD certification before any task is marked complete.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary timeouts with intelligent condition polling and event-driven waiting patterns.

Security Test Scanner

Automates security vulnerability testing for applications and APIs to identify OWASP Top 10 risks and injection flaws.

Testing Anti-Patterns Prevention

Prevents common testing mistakes like mocking implementation details, polluting production code, and ignoring accessibility requirements.

Snapshot Test Manager

Automates the creation and validation of UI component snapshots to prevent visual regressions during development.

Chaos Engineering Toolkit

Designs and executes controlled failure experiments to identify system weaknesses and validate architectural resilience.

Security Code Review Agent

Conducts automated security audits and vulnerability assessments to identify risks like SQL injection, XSS, and insecure dependencies within your codebase.

Chaos Engineering Toolkit

Designs and executes controlled failure experiments to identify system weaknesses and validate architectural resilience.

Systematic Debugging

Eliminates guesswork by enforcing a rigorous four-phase framework to identify root causes before implementing any code fixes.