Security & Testing Agent Skills

PHP Testing Mastery

Master professional PHP testing workflows using PHPUnit 11, Pest 3, and advanced TDD strategies to ensure production-grade code quality.

TDD Workflow for Claude Code

Enforces a strict Red-Green-Refactor cycle for software development tasks using automated gate hooks and evidence tracking.

Dependency Tracker

Audits and aligns project dependencies with infrastructure documentation to ensure security, consistency, and clean codebases.

Polyglot SPI Verification

Verifies cross-language deterministic consistency for Strong Parallelism Invariance across 15+ programming environments.

SPI Parallelism Verification

Verifies Strong Parallelism Invariance (SPI) and GF(3) conservation across deterministic data streams to ensure execution-order independence.

Bisimulation Game Sync

Verifies and synchronizes behavioral equivalence across AI agents using formal game-theoretic frameworks.

Cynara Policy Validator

Validates Cynara privilege access control policies to ensure secure and compliant Tizen application environments.

Burp Suite Security Testing

Conducts professional-grade web application security audits and penetration testing using the Burp Suite ecosystem.

Spec-to-Code Compliance

Verifies that blockchain protocol implementations strictly adhere to their technical specifications and whitepapers during security audits.

Systematic Debugging Workflow

Implements a disciplined four-phase debugging framework that prioritizes root cause investigation over superficial fixes.

Constant Time Analysis

Identifies timing side-channel vulnerabilities and non-constant-time operations in cryptographic implementations across multiple programming languages.

CodeQL Static Analysis

Performs deep semantic code analysis to detect security vulnerabilities, track data flow, and conduct comprehensive security audits.

LibFuzzer Security Testing

Automates the discovery of software vulnerabilities using coverage-guided fuzzing patterns and security best practices.

Claude Code Permission Manager

Configures granular tool permissions and security rules within Claude Code to protect sensitive files and manage access.

Sharp Edges Security Auditor

Identifies error-prone API designs and dangerous configuration patterns to prevent security vulnerabilities and misuse.

Root Cause Tracing

Traces software bugs backward through the call stack to identify and resolve the original trigger rather than just treating symptoms.

Smack Policy Auditor

Audits SMACK policy files for label conflicts, correctness, and mandatory access control compliance in Tizen environments.

Scale Game Problem Solving

Exposes architectural weaknesses and fundamental truths by stress-testing software concepts at extreme scales.

Cosmos Vulnerability Scanner

Scans Cosmos SDK blockchains and CosmWasm contracts to detect consensus-critical vulnerabilities and security flaws.

Better Auth Integration

Implements secure, framework-agnostic authentication and authorization systems using the Better Auth TypeScript framework.

Wycheproof Cryptographic Testing

Hardens cryptographic implementations by applying Google's Wycheproof test vectors to detect known vulnerabilities and edge-cases.

Requirement Clarification

Ensures implementation accuracy by prompting for clarification whenever task requirements are ambiguous or underspecified.

Tizen Sandbox Escape Detector

Tests Tizen application sandboxes for privilege escalation and escape vulnerabilities to ensure robust process isolation.

Property-Based Testing

Implements advanced property-based testing strategies to ensure code correctness and security through comprehensive input exploration and invariant validation.

Tizen Certification Coordinator

Orchestrates the Tizen certification lifecycle by coordinating TCT test execution, security policy auditing, and compliance documentation.

Substrate Vulnerability Scanner

Identifies seven critical security vulnerabilities in Substrate and Polkadot pallets during the development and auditing process.

PAL Multi-Model Orchestrator

Orchestrates advanced PAL MCP tools for systematic debugging, architecture consensus, and deep multi-model software analysis.

Ruzzy Rust Fuzzing

Automates Rust vulnerability discovery using the Ruzzy fuzzing framework to identify security flaws and crashes.

Tizen SMACK Label Orchestrator

Coordinates mandatory access control labels and process isolation for Tizen applications and kernel security.

JavaScript Testing Patterns

Implements robust testing architectures using Jest, Vitest, and Testing Library for JavaScript and TypeScript applications.