Security & Testing Agent Skills

Bats Shell Testing Patterns

Master the Bash Automated Testing System (Bats) to create robust, production-grade unit tests for shell scripts and CI/CD pipelines.

Design-by-Contract Development

Automates the creation, verification, and remediation of formal code contracts to ensure software correctness and reliability.

E2E Testing Patterns

Master end-to-end testing with Playwright and Cypress to build reliable test suites that catch regressions and enable fast deployments.

Bats Testing Patterns

Implements robust unit testing for shell scripts using the Bash Automated Testing System (Bats).

AI Verification & Quality Assurance

Ensures high-quality agent outputs and codebase reliability through automated truth scoring, code verification, and fail-safe rollback systems.

Condition-Based Async Waiting

Eliminates flaky tests and race conditions by replacing arbitrary timeouts with efficient condition-based polling patterns.

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and fine-grained RBAC.

Compliance Architecture Expert

Designs enterprise-grade cloud architectures compliant with SOC 2, HIPAA, GDPR, and PCI-DSS standards.

SAST Configuration & Security Scanning

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security standards within your codebase.

Network Security Setup

Configures secure Claude Code sandbox network isolation policies to protect sensitive data and prevent unauthorized access.

SAST Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection in application code.

Debugging Strategies

Implements systematic debugging techniques and profiling tools to efficiently track down bugs across any technology stack.

Bitcoin Auth Diagnostics

Diagnoses and troubleshoots authentication token failures, signature errors, and integration issues within the bitcoin-auth library ecosystem.

Network Security Setup

Configures secure network isolation and trusted domain whitelisting for Claude Code sandboxes.

Writing Hookify Rules

Configures automated guardrails and custom alerts for Claude Code by defining patterns for bash commands and file modifications.

Authenticated Route Tester

Tests and validates authenticated API endpoints using cookie-based JWT authentication and Keycloak integration.

Route Tester for Claude Code

Tests authenticated API endpoints and validates route functionality using cookie-based JWT authentication patterns.

Better Auth Management

Implements comprehensive, framework-agnostic authentication and authorization systems using the Better Auth TypeScript framework.

Forge CLI Debugger

Provides a systematic workflow for debugging, testing, and extending the code-forge CLI application using Rust-based build and verification patterns.

Fabric AI Pattern Orchestrator

Enhances content analysis and security modeling by intelligently selecting from over 240 specialized Fabric CLI patterns.

Web3 Smart Contract Testing

Tests Solidity smart contracts comprehensively using Hardhat and Foundry frameworks with advanced patterns like mainnet forking and fuzzing.

Secrets Management & CI/CD Security

Implements robust secrets management and security protocols for CI/CD pipelines using industry-standard tools like Vault and AWS Secrets Manager.

Kubernetes Security Policies

Implements production-grade Kubernetes security policies including NetworkPolicy, RBAC, and Pod Security Standards.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within development workflows.

Security Audit Checklist

Performs comprehensive security audits using OWASP Top 10 standards and secure coding best practices to identify vulnerabilities.

Writing Effective Tests

Enforces principles for writing maintainable, outcome-driven tests using industry best practices and comprehensive edge case checklists.

Strict TDD State Machine

Enforces a disciplined Red-Green-Refactor workflow through a rigorous state machine to ensure verifiable software quality.

Airflow DAG Testing & Debugging

Automates iterative test-debug-fix cycles for Apache Airflow DAGs using specialized MCP tools for reliable execution and diagnosis.

Test-Driven Development (TDD)

Enforces the Red-Green-Refactor cycle to ensure code quality through failing-test-first development and systematic refactoring.

Fnox Secrets Configuration

Configures secure, version-controlled secrets management using the Fnox TOML schema and hierarchical file structures.