Security & Testing Agent Skills

Verification & Quality Assurance

Ensures codebase reliability through real-time truth scoring, automated quality verification checks, and an intelligent rollback system for failed changes.

OpenWebF Security & XSS Sanitization

Secures WebF applications by identifying and mitigating Cross-Site Scripting (XSS) risks through automated sanitization and input validation.

TypeScript Type Safety Review

Conducts comprehensive TypeScript code reviews to identify type safety violations, security risks, and runtime reliability issues.

Python Testing Strategy

Standardizes Python testing workflows using pytest with structured file naming, coverage goals, and API-first testing patterns.

OWASP ASVS 5.0 Security Requirements

Accesses and maps OWASP ASVS 5.0 requirements to streamline security audits and ensure application compliance across 17 domains.

Angular Security Patterns

Provides comprehensive implementation patterns and best practices for securing Angular applications using JWT, OAuth2, and advanced session management.

Authentication Security Remediation

Provides language-specific patterns and secure implementations for fixing authentication and authorization vulnerabilities in codebases.

Crypto Security Remediation

Fixes cryptographic security flaws by replacing weak algorithms, insecure randomness, and broken TLS configurations with language-specific secure patterns.

Language-Specific Security Vulnerability Patterns

Identifies language-specific security vulnerabilities across major programming stacks using optimized regex and grep patterns.

Vue 3 Playwright Testing

Streamlines end-to-end and component testing for Vue 3 applications using Playwright and Vite best practices.

Remediation Configuration Security

Provides actionable security fix patterns for configuration and deployment vulnerabilities across multiple programming languages.

Dependency Evaluator

Evaluates the health and risk of programming dependencies through a systematic 10-signal analysis to prevent technical debt and security vulnerabilities.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to catch bugs through sequential syntax, unit, integration, and end-to-end testing cycles.

Systematic Debugging

Implements a rigorous five-step methodology to identify, isolate, and resolve software bugs without guesswork.

Test Writer

Generates comprehensive unit, integration, and end-to-end tests following industry-standard patterns and best practices.

Defense-in-Depth Validation

Implements multi-layered data validation to prevent deep-seated execution failures and ensure structural system integrity.

Root Cause Tracing

Traces software bugs backward from symptoms to their original source to prevent recurring issues and technical debt.

Defense-in-Depth Validation

Implements multi-layered data validation strategies across entry points, business logic, and environment guards to prevent structural bugs.

Role-Based Access Control (RBAC)

Implements a complete authorization framework with hierarchical user roles and permission middleware for full-stack applications.

QA Engineer

Validates software implementation through automated test execution, edge case identification, and comprehensive bug reporting.

Web Application Testing

Automates and tests local web applications using Playwright with integrated server lifecycle management.

Systematic Debugging

Enforces a rigorous four-phase protocol to identify root causes and implement reliable software fixes without guesswork.

Systematic Debugging

Enforces a rigorous four-phase debugging protocol to identify root causes and implement permanent fixes rather than superficial patches.

Pipeline Data Validator

Ensures data integrity across the development lifecycle by validating JSON artifacts against strict Pydantic schemas.

.NET Code Security & Quality Analyzer

Performs automated static analysis, security audits, and dependency vulnerability scans for .NET projects.

Web App Testing with Playwright

Automates and tests local web applications using native Playwright scripts and managed server lifecycles.

OSS Solution Implementation

Implements high-quality code and comprehensive tests for open-source contributions while strictly following project standards.

HTML Lint & Accessibility Runner

Audits web content for WCAG accessibility compliance and HTML structural standards using industry-standard linting tools.

Plan-Then-Execute

Implements a high-integrity execution pattern that separates planning from action to prevent prompt injection and ensure human oversight.

Advanced Debugging

Streamlines troubleshooting across Next.js, Supabase, and React Query stacks with specialized workflows and automated diagnostic tools.