Security & Testing Agent Skills

Verification Before Completion

Validates that tasks are genuinely resolved through a rigorous multi-level verification protocol before marking them as done.

Systematic Debugging

Enforces a rigorous, four-phase root cause analysis process to eliminate guess-and-check debugging and ensure stable software fixes.

Python Testing Strategy

Standardizes Python testing practices for FastAPI, Django, and Flask using modern pytest conventions and fixtures.

Rust Test-Driven Development

Enforces the Red-Green-Refactor cycle in Rust projects using cargo test to ensure high-quality, bug-free code through iterative testing.

Audit Context Builder

Facilitates ultra-granular, line-by-line architectural analysis to build comprehensive system context for security audits.

Rust Testing Rules

Standardizes Rust unit and integration testing workflows by enforcing best practices for mocks, test structures, and the testing pyramid.

UI Visual Validator

Validates UI modifications and design system compliance through rigorous visual analysis and accessibility verification.

Java & Spring Boot Testing Strategy

Implements comprehensive Java and Spring Boot testing conventions using JUnit 5, Mockito, and Testcontainers.

Universal Testing Strategy

Provides language-agnostic testing principles to ensure robust, maintainable, and high-quality codebases.

Quality Assurance Guide

Enforces rigorous code standards and streamlines pre-commit quality checks to ensure production-ready software.

Web Application Testing

Automates the interaction and testing of local web applications using Playwright scripts and built-in server management.

Professional Test Design & Strategy

Guides the creation of robust, high-coverage software tests using industry-standard design patterns and heuristics.

CodeQL Security Analysis

Performs deep static analysis to identify security vulnerabilities, track data flow, and perform taint analysis across complex codebases.

Systematic Debugging

Implements a rigorous four-phase methodology to identify root causes and ensure reliable software fixes before code changes are made.

Bug Finder & Security Auditor

Identifies security vulnerabilities, logical bugs, and code quality issues within local Git branch changes.

Bug & Security Auditor

Performs systematic security audits and bug detection on local code changes using a structured multi-phase review process.

Differential Security Review

Performs deep, security-focused differential analysis on code changes to identify risks, calculate blast radius, and prevent vulnerabilities.

Subagent Quality Reviewer

Analyzes and optimizes Claude Code subagents based on industry best practices to ensure high-quality, reliable AI workflows.

Codex CLI Bridge

Delegates codebase research and deep code reviews to the OpenAI Codex CLI for high-performance parallel processing.

OpenSpec Change Verifier

Validates code implementations against specifications, tasks, and design documents to ensure completeness and correctness before archiving changes.

Firebase APK Security Scanner

Audits Android APK files for Firebase security vulnerabilities and misconfigurations including exposed databases and storage buckets.

Cosmos Vulnerability Scanner

Identifies consensus-critical vulnerabilities and security flaws in Cosmos SDK modules and CosmWasm smart contracts to prevent chain halts and fund loss.

MoonBit PBT Workflow Guide

Implements and maintains robust Property-Based Testing workflows in MoonBit repositories using the QuickCheck framework.

Bug Finder & Security Auditor

Performs deep security audits and bug detection on local branch changes using a rigorous five-phase analysis process.

Testing Strategy for Rust & Tauri

Implements comprehensive testing workflows for Rust, Tauri, and frontend applications using TDD and coverage standards.

Strict Verification Before Completion

Enforces a mandatory evidence-based protocol requiring fresh command output before any coding task can be claimed as complete or fixed.

Cargo Fuzz for Rust

Implements automated fuzz testing for Rust projects using the libFuzzer backend and Cargo integration.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality code through mandatory test-first implementation.

Systematic Debugging

Eliminates trial-and-error coding by enforcing a rigorous, four-phase root cause analysis process before any code changes are made.

WCAG Accessibility Audit Patterns

Conducts comprehensive WCAG 2.2 accessibility audits through automated testing, manual verification, and detailed remediation strategies.