Security & Testing Agent Skills

Regression Checker

Runs existing test suites automatically to detect code regressions and ensure project stability after implementation changes.

Code Quality Checker

Analyzes completed implementation tasks against DRY, KISS, YAGNI, and architectural principles to ensure production-ready code.

Vendor Due Diligence Framework

Assesses IT service providers and technology vendors through structured risk evaluations and regulatory compliance checklists.

Test Runner Automator

Automates test execution and coverage reporting across multiple programming languages and frameworks.

Security Auditor (L3)

Performs automated security audits to detect vulnerabilities like hardcoded secrets, SQL injection, and XSS in your codebase.

Codebase Auditor & Health Coordinator

Coordinates nine specialized AI workers to perform comprehensive codebase audits across security, architecture, and quality domains.

E2E Test Failure Resolver

Analyzes failed end-to-end tests and automatically implements fixes based on error logs and screenshot evidence.

Spec Format Converter

Converts software specifications between various formats like EARS, Gherkin, and Kiro while maintaining semantic integrity.

Test Infrastructure Setup

Configures robust testing frameworks, coverage thresholds, and sample test suites for TypeScript, .NET, and Python projects.

Dependencies & Reuse Auditor

Audits project dependencies and code reuse to identify outdated packages, unused libraries, and custom implementations of standard features.

Audit Settings

Audits Claude Code configuration files for security vulnerabilities, schema compliance, and sensitive information exposure.

Claude Rule Auditor

Validates and optimizes Claude Code rule files to ensure high-quality, compliant AI behavior across projects.

GDPR Compliance Assessor

Conducts comprehensive GDPR compliance audits and privacy impact assessments for data processing systems.

HIPAA Compliance Assessor

Conducts comprehensive HIPAA compliance assessments for healthcare systems and applications handling Protected Health Information (PHI).

Claude Plugin Audit

Validates Claude Code plugins for manifest accuracy, namespace compliance, and distribution readiness.

Multi-Identity Git Configuration

Configures directory-scoped Git identities to automate switching between work and personal emails, GPG keys, and SSH credentials.

Dependency Security Audit

Audits project dependencies for known CVEs and security vulnerabilities across multiple package ecosystems.

Chaos Engineering Planner

Designs robust chaos engineering experiments and GameDay plans to identify system failure modes and improve resilience.

BDD Acceptance Criteria Generator

Generates testable, BDD-compliant acceptance criteria in Given-When-Then format from user stories.

Plan Test Data Strategy

Generates comprehensive test data strategies including synthetic generation, PII anonymization, and environment-specific management.

PCI-DSS Compliance Assessor

Conducts comprehensive PCI-DSS scope assessments and compliance reviews for payment card handling systems.

Test Automation ROI Analyzer

Evaluates test cases to calculate the financial and operational return on investment for automation prioritization.

Test Pyramid Analyzer

Evaluates test distribution across unit, integration, and end-to-end levels to optimize testing strategy and software quality.

Comprehensive Security Review

Conducts exhaustive security audits by orchestrating code analysis, secrets scanning, and dependency vulnerability checks in parallel.

Systematic Test Case Generator

Generates comprehensive test cases using formal design techniques like boundary value analysis and equivalence partitioning to ensure rigorous feature coverage.

Automated Test Suite Runner

Executes project-wide validation suites and generates structured JSON reports for automated debugging and quality assurance.

Bug Investigation & Planning

Generates comprehensive bug fix plans featuring root cause analysis and validation strategies to ensure robust software resolutions.

Compliance Framework Mapper

Maps security controls across multiple frameworks like ISO 27001, SOC 2, and NIST CSF to create a unified compliance strategy.

Security Architecture Reviewer

Conducts comprehensive security audits and Zero Trust assessments to identify vulnerabilities and provide prioritized remediation guidance.

Gemini Code Analyzer

Analyzes source files via Gemini CLI to provide deep insights into security, performance, architecture, and potential bugs.