Security & Testing Agent Skills

SAP Cloud Integration Security Patterns

Implements industry-leading security standards and patterns for SAP Integration Suite flows.

Systematic Debugging

Implements a rigorous, five-step diagnostic process to identify and resolve software bugs without guesswork or trial-and-error.

Test-Driven Development

Enforces a strict Red-Green-Refactor workflow by requiring failing tests before any implementation code is written.

E2E Testing Patterns for Playwright

Implements robust end-to-end testing suites using Playwright, the Page Object Model, and advanced strategies for flaky test mitigation.

Verification Loop

Automates a comprehensive six-phase verification workflow to ensure code quality, security, and build stability before Pull Request creation.

Python Testing Specialist

Implements comprehensive Python testing strategies using pytest, TDD methodologies, and advanced mocking patterns.

MERN Stack Testing

Provides standardized testing patterns for full-stack MERN applications using Jest, Supertest, and React Testing Library.

TDD Workflow for Claude Code

Implements the Red-Green-Refactor cycle to ensure code reliability and quality through disciplined Test-Driven Development.

E2E Testing with Playwright

Implements robust, maintainable end-to-end testing suites using Playwright best practices and the Page Object Model.

MERN Stack Testing Suite

Implements robust testing strategies for MERN applications using Jest, Supertest, and React Testing Library.

Python Code Review & Linting

Automates Python code analysis to enforce security standards, fix anti-patterns, and maintain strict linting using Ruff and Mypy.

Node.js API Integration Testing

Streamlines the creation of robust integration tests for Node.js APIs using Supertest, MongoMemoryServer, and factory patterns.

TON Smart Contract Security Scanner

Audits TON blockchain smart contracts written in FunC to identify and remediate platform-specific security vulnerabilities.

Professional Code Review

Systematizes code reviews using a rigorous methodology featuring severity levels, false-positive filtering, and specification-matching checklists.

Wycheproof Crypto Validator

Validates cryptographic implementations using extensive test vectors to protect against known attacks and edge cases.

Repository Quality Scoring

Quantifies repository health and production-readiness through weighted scoring across documentation, security, CI/CD, and community standards.

Compliance Standards

Automates compliance audits against industry-standard security and quality frameworks like OpenSSF, OWASP, and SOC2.

Insecure Defaults Detector

Audits codebase for fail-open security vulnerabilities and weak default configurations that risk production exposure.

Ruzzy Ruby Fuzzer

Enables coverage-guided fuzzing for pure Ruby applications and Ruby C extensions to detect memory corruption and security vulnerabilities.

SARIF Security Results Parser

Parses, aggregates, and analyzes Static Analysis Results Interchange Format (SARIF) files to streamline security vulnerability management.

CyberSorted Lite Security Advisory

Provides expert cybersecurity advisory, threat modeling, and compliance mapping tailored to CISO, CTO, and Security Architect roles.

Systematic Debugging

Implements a rigorous four-phase framework to identify root causes and eliminate trial-and-error debugging during development.

YARA-X Malware Rule Authoring

Authors high-performance YARA-X detection rules for precise malware identification and threat hunting.

OSS-Fuzz Security Testing

Implements continuous fuzz testing infrastructure for open-source projects using Google's OSS-Fuzz framework.

Property-Based Testing Guide

Implements advanced property-based testing strategies to ensure robust code reliability across multiple programming languages and smart contracts.

Fuzzing Obstacle Bypass

Patches codebases to bypass checksums, non-deterministic states, and validation barriers to improve fuzzer coverage.

Systematic Debugging

Implements a rigorous four-phase protocol to identify root causes and eliminate bugs through evidence-based troubleshooting rather than trial and error.

Defense-in-Depth Validation

Implements multi-layer data validation strategies to prevent bugs and ensure system stability across all execution levels.

Workflow Debug

Systematically debugs complex software errors through hypothesis-driven analysis, solution comparisons, and multi-layer verification.

Differential Security Review

Performs security-focused differential reviews of code changes to detect vulnerabilities and prevent regressions in PRs and commits.