Security & Testing Agent Skills

Compliance Architecture Expert

Designs and validates enterprise-grade cloud architectures that meet SOC 2, HIPAA, GDPR, and PCI-DSS compliance standards.

dbt Unit Testing

Streamlines the creation and configuration of unit tests for dbt models to ensure SQL logic reliability and facilitate TDD.

TDD Workflow Coordinator

Automates and guides the Test-Driven Development lifecycle by orchestrating red-green-refactor cycles and connecting users with expert TDD tools.

Test-Driven Development

Enforces a rigorous RED-GREEN-REFACTOR cycle to ensure every line of production code is verified by a failing test first.

Safe Code Refactoring

Guides incremental, test-verified code transformations to improve structure and readability without altering existing behavior.

Systematic Debugging & Tooling

Enforces a rigorous, tool-assisted methodology to identify and resolve the root cause of software bugs through systematic investigation and evidence-based hypotheses.

Strict Task Verification

Enforces rigorous evidence-based verification before marking any coding task, bug fix, or build as complete.

OCaml Fuzz Testing

Implements robust property-based and fuzz testing for OCaml protocol implementations and parsers using Crowbar.

Root Cause Tracing

Identifies the original source of software errors by tracing bugs backward through the call stack to prevent superficial band-aid fixes.

Claude Skill Authoring & TDD

Applies Test-Driven Development principles to the creation and refinement of Claude Code skills to ensure reliability and eliminate agent loopholes.

Systematic Debugging

Investigates and resolves software bugs through hypothesis-driven reproduction and evidence-based fixes.

Mock Data Generation

Generates realistic, domain-specific mock data and test fixtures using Faker.js and factory patterns.

Syrupy Pytest Snapshot Testing

Simplifies snapshot testing in Python by asserting the immutability of complex data structures and managing snapshot files within pytest.

Authentication Patterns & Security

Implements industry-standard authentication flows including JWT, OAuth 2.0, and Passkeys while ensuring security best practices.

Acceptance Criteria Authoring

Generates clear, testable acceptance criteria using Given-When-Then format and INVEST principles for Behavior-Driven Development (BDD).

Test Data Strategy

Plans and manages comprehensive test data strategies including synthetic generation, anonymization, and environment-specific provisioning.

Zero Trust Architecture

Architects and evaluates modern security systems using the "never trust, always verify" framework for identity-based protection.

Security Frameworks Compliance

Guides software development and infrastructure alignment with ISO 27001, SOC 2, NIST CSF 2.0, and CIS Controls.

Systematic Test Case Design

Applies rigorous test design techniques like boundary value analysis and decision tables to maximize software testing coverage and defect detection.

Performance Test Strategy & Planning

Designs comprehensive performance test strategies, capacity plans, and SLA validation models for high-scale applications.

Data Classification & Compliance

Implements comprehensive data classification frameworks and lifecycle management policies to ensure regulatory compliance and data security.

Vulnerability Management

Manages the end-to-end security vulnerability lifecycle from discovery and risk-based prioritization to remediation and disclosure.

Supply Chain Security Expert

Secures software development lifecycles by generating SBOMs, implementing SLSA frameworks, and scanning for dependency vulnerabilities.

Contract Test Design

Architects consumer-driven contract testing strategies using Pact to ensure API stability and prevent breaking changes.

Threat Modeling & Security Design

Conducts systematic security assessments using STRIDE and DREAD methodologies to identify and mitigate software vulnerabilities during design.

.NET Architectural Fitness Functions

Enforces .NET architectural boundaries and layer constraints using NetArchTest and ArchUnitNET validation rules.

AI Governance & Compliance

Guides the development of responsible AI systems through comprehensive regulatory compliance frameworks and risk management standards.

DevSecOps Practices

Integrates automated security scanning, vulnerability management, and shift-left principles directly into your software development lifecycle.

Story Quality Gate (Linear Integration)

Orchestrates a two-pass quality validation workflow for Agile stories, ensuring code quality, test coverage, and manual verification before closing tasks in Linear.

Story Test Task Planner

Plans and generates comprehensive automated test tasks using Risk-Based Testing methodology and manual testing results.