Security & Testing Agent Skills

Unit Test Loop

Automates the iterative cycle of identifying coverage gaps, writing focused unit tests, and maintaining code quality through integrated reviews.

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and RBAC using industry-standard security patterns.

IDOR Vulnerability Testing

Provides systematic methodologies and workflows for identifying, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Secure Coding & Security Auditing

Enforces rigorous secure coding practices and automates vulnerability checks using CodeGuard integration to protect applications against OWASP Top 10 threats.

Anti-Reversing & JS Deobfuscation Master

Provides a comprehensive framework for identifying, deobfuscating, and analyzing protected JavaScript code and malware samples.

Systematic Debugging Framework

Implements a disciplined, four-phase debugging methodology to identify root causes and ensure robust, verified technical fixes.

Visual Regression Cinema

Automates the creation of visual filmstrips and pixel-diff comparisons from browser interaction videos to detect UI regressions.

Security Vulnerability Scanner

Identifies and reports security vulnerabilities in code, dependencies, and configurations using automated CVE detection and static analysis.

Container Security Scanner

Scans containerized environments and Kubernetes clusters for vulnerabilities to ensure security compliance and automated threat detection.

Visual & Structural A/B Compare

Performs automated visual and structural comparisons between web pages using pixel diffing and accessibility tree analysis.

SMTP Security Penetration Testing

Conducts thorough security assessments of SMTP servers to identify vulnerabilities like open relays, user enumeration, and weak authentication.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, verified code implementation.

GDPR Compliance Scanner

Scans applications and data systems to identify potential GDPR compliance violations and provide actionable remediation guidance.

Agent Evaluation

Evaluates and benchmarks LLM agents using statistical testing, behavioral contracts, and reliability metrics to ensure production readiness.

Data Encryption Tool

Protects sensitive information by providing seamless data encryption and decryption capabilities using industry-standard algorithms.

IDOR Vulnerability Testing

Conducts comprehensive security audits to identify and remediate Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Automation Workflow Validator

Validates and audits automation workflow JSON files for Power Automate, n8n, Make, and Zapier to ensure deployment readiness.

Pentest Command Reference

Provides a comprehensive library of essential penetration testing commands for network scanning, exploitation, and vulnerability assessments.

API Fuzzer

Performs automated fuzz testing on REST APIs to identify security vulnerabilities, input validation flaws, and edge-case failures.

Access Control Auditor

Identifies security vulnerabilities and misconfigurations in IAM policies, ACLs, and permission systems to ensure robust access management.

Pentest Command Reference

Provides a comprehensive library of penetration testing commands and workflows for security professionals using industry-standard tools.

SOC 2 Audit Helper

Streamlines SOC 2 audit preparation by automating evidence gathering, Trust Service Criteria assessments, and compliance gap analysis.

Real-World Verification Plans

Automates the creation and execution of real-world verification plans to ensure code works in production-like environments without mocks.

Quality Gate Compliance

Enforces a rigorous 8-point quality assurance checklist for every AI-generated code change to ensure architectural consistency and security.

Form Debugger & Auditor

Audits web forms for accessibility, validation, security, and autocomplete compatibility using Playwright automation.

Verification Guardrail

Enforces a strict, evidence-based verification protocol to ensure all code changes, builds, and tests pass before marking tasks as complete.

Wireshark Network Traffic Analysis

Analyzes network traffic using Wireshark to troubleshoot connectivity, optimize performance, and investigate security incidents.

Load Test Runner

Generates and executes comprehensive load testing scripts to validate application performance and identify architectural bottlenecks.

Dependency Checker

Scans project dependencies for security vulnerabilities, outdated packages, and license compliance across multiple programming languages.

Go Testing Expert

Generates and guides Go testing strategies using a pyramid approach with a focus on in-memory dependencies and 100% coverage for leaf types.