Security & Testing Agent Skills

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and role-based access control patterns.

Keycloak IAM Manager

Manages Keycloak identity and access systems including realms, clients, authentication flows, and user federation.

Automated Bug Reporting

Automates technical bug investigation and generates standardized markdown reports using AI subagents.

Scale Game Problem Solving

Exposes architectural weaknesses and fundamental truths by stress-testing software concepts at extreme theoretical scales.

TDD Red-Green-Refactor

Enforces a strict Test-Driven Development workflow using Vitest to ensure every code change is validated by failing tests first.

Supabase Auth SSR Setup

Configures secure authentication for Next.js App Router applications using Supabase SSR with cookie-based sessions and middleware protection.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Load Balancer Tester

Validates and stress-tests load balancer configurations, including traffic distribution, failover mechanisms, and session persistence.

Debugging Strategies & Root Cause Analysis

Master systematic debugging techniques and profiling tools to efficiently resolve bugs and performance bottlenecks across any technology stack.

RBAC Permissions Architect

Architects secure, multi-tenant features using modular RBAC, workspace isolation, and CASL-integrated permission mapping.

Smart Contract Entry Point Analyzer

Identifies and categorizes state-changing entry points in smart contract codebases to streamline security audits and map attack surfaces.

Error Handling Patterns

Implements robust error handling strategies and resilient architectural patterns across multiple programming languages.

Automated Mock & Stub Generator

Generates comprehensive mock data, stub functions, and test datasets to isolate code environments and accelerate automated testing.

Test Generation Integration

Integrates specialized testing plugins and provides intelligent fallbacks to streamline unit test generation across multiple frameworks.

Security Code Review

Identifies security vulnerabilities, assesses risks using OWASP standards, and provides actionable remediation guidance for production-grade code.

Automated Test Generator

Generates comprehensive unit tests, mocks, and edge-case scenarios across multiple programming languages and frameworks.

Test Doubles Generator

Generates automated mocks, stubs, spies, and fakes for unit testing by analyzing code dependencies and framework requirements.

Mobile App Testing Suite

Automates the creation and execution of end-to-end tests for iOS and Android applications using industry-standard frameworks.

Security Audit Reporter

Generates comprehensive security audit reports and compliance assessments with actionable remediation steps.

Temporal Python Testing

Implements comprehensive testing strategies for Temporal workflows and activities using pytest and advanced time-skipping techniques.

Security Reviewer

Performs comprehensive security audits, vulnerability scans, and proof-of-concept generation using the Gemini security extension.

Authentication Security Validator

Validates authentication implementations and identifies security vulnerabilities in JWT, OAuth, and session management.

Nixtla Universal Validator

Validates Nixtla skills and plugins using deterministic evidence bundles and strict schema gates to ensure compliance and reliability.

Secure Secrets Management

Implements robust security protocols for managing sensitive credentials, keys, and certificates within CI/CD pipelines.

DeFi Protocol Templates

Deploys production-ready smart contract templates for staking, AMMs, governance systems, and flash loans.

Test Case Fixer

Automates the identification, reproduction, and resolution of failing test cases through a structured debugging and verification workflow.

Better Auth Best Practices

Streamlines the integration of Better Auth into TypeScript projects with optimized configuration patterns and security-first implementation guides.

Better Auth Configuration

Implements secure OAuth 2.1 and OIDC authentication flows using the Better Auth framework with MCP-guided assistance.

Verify Definition of Done

Automates the verification of completion criteria for development sessions and generates detailed audit reports.

Governance RoC Compliance Checker

Evaluates session activity against Rule of Constraints (RoC) policies to ensure regulatory and organizational compliance.