Security & Testing Agent Skills

Testing Workflow

Executes comprehensive test suites including unit, integration, E2E, and mutation tests to validate code changes and ensure quality.

Security Analyzer

Performs comprehensive security audits across codebases, dependencies, and infrastructure to identify vulnerabilities and provide automated remediation plans.

Screen Reader Accessibility Testing

Validates web application accessibility by providing comprehensive guides and implementation patterns for screen reader testing across major platforms.

Quality Gate Skill

Executes a comprehensive, non-destructive quality gate including linting, formatting, type safety, tests, and security checks for your codebase.

Security Requirement Extraction

Transforms threat models and business context into actionable security requirements, user stories, and test specifications.

Claude Configuration Reviewer

Reviews Claude configuration files for security vulnerabilities, structural integrity, and prompt engineering best practices.

Sample Skill

Walks through a sample workflow for creating and running unit tests.

Iterative Code Review With Codex

Guides an iterative code review process by collaborating with external AI models to resolve pull request comments.

OpenFGA Authorization Modeling

Guides the design, testing, and implementation of scalable relationship-based access control using OpenFGA best practices.

Skill Invocation Test

Verifies active skill invocation capabilities by triggering a specific response when a secret codeword is detected.

Security & Compliance Validation

Hardens software projects through automated security scanning, vulnerability detection, and comprehensive compliance auditing.

GCP Project Auditor

Conducts comprehensive security and compliance audits of Google Cloud Platform projects to identify misconfigurations and excessive permissions.

Validation Phase

Validates implementation quality through tiered build checks, automated acceptance criteria verification, and agent-driven code reviews.

Complete Skill Validation

Validates skill parsing capabilities by providing a fully populated template with diverse tool permissions.

Skill Isolation Tester

Validates Claude Code skills in isolated environments like Git worktrees, Docker containers, or VMs to ensure portability and catch environment-specific bugs before public release.

Double Check

Ensures task completion and production readiness through rigorous multi-angle verification and objective goal alignment.

Next.js Better-Auth Integration

Integrates the better-auth framework into Next.js applications using pre-configured middleware, API routes, and UI components.

TDD Cycle Management

Guides the implementation of software features using a rigorous Red-Green-Refactor test-driven development workflow.

Splunk Security & RBAC Management

Automates Splunk security operations including JWT token management, role-based access control verification, and ACL configuration.

Form Validation

Implements robust, schema-first form validation using Zod while applying optimal UX timing patterns and user-centric error messaging.

STEEB Task Debugger

Diagnoses and resolves task management issues in the STEEB application, including state synchronization errors, UI inconsistencies, and Firestore integration failures.

Global Validation

Enforces robust input validation and sanitization standards to ensure data integrity and security across application logic and API endpoints.

Web App Testing Toolkit

Facilitates end-to-end testing and interaction with local web applications using Playwright and automated server management.

Test Orchestrator

Configures project-specific testing infrastructure, frameworks, and strategy documentation to establish a robust quality assurance foundation.

Code Review Gate

Enforces human-in-the-loop validation for security-sensitive paths and high-complexity code changes within the Claude Code environment.

Defense-in-Depth Validation

Implements multi-tiered data validation strategies to prevent deep execution failures and make software bugs structurally impossible.

The Oracle

Conducts multi-source research across codebases and the web to provide deep architectural analysis and complex debugging solutions.

Root Cause Tracing

Systematically traces bugs through the call stack to identify original triggers and implement long-term fixes.

Testing & Test Writing

Writes strategic, behavior-focused tests for core user flows and critical business paths to balance development velocity with reliable coverage.

Comprehensive Code Review

Performs ultra-critical, multi-pass analysis of code changes to identify runtime failures, architectural flaws, and environment risks before merging.