Security & Testing Agent Skills

Hardware Testbench Reporter

Generates detailed architectural reports and visual diagrams for hardware module verification environments.

QA Verification Specialist

Conducts end-to-end browser testing and visual regression checks by navigating applications like a human QA engineer.

Prompt Shield Security Auditor

Protects your Claude Code environment by performing comprehensive security audits on third-party skills, MCP servers, and npm packages.

C2PA Spec Compliance

Verifies software and code implementations against the official C2PA (Coalition for Content Provenance and Authenticity) specifications for content provenance.

Spring Security Pro

Secures Spring Boot applications by implementing robust authentication, authorization, JWT integration, and OAuth2 protocols following modern security standards.

Spring Boot Testing

Streamlines the creation of robust test suites for Spring Boot applications using MockMvc, TestContainers, and specialized test slices.

Bug Hunter

Investigates software bugs, performs root cause analysis, and generates systematic fixes through a structured diagnostic workflow.

Dojo Test Generation

Generates comprehensive unit and integration tests for Dojo models and systems using Cairo's testing framework and cheat codes.

Dojo Code Review

Reviews Dojo engine smart contracts for security, gas efficiency, and ECS architecture best practices.

FFUF Web Fuzzing Expert

Provides expert guidance for the FFUF web fuzzer to discover hidden content and perform security audits during penetration testing.

Agentic Issue Fixer

Iteratively resolves code issues, security vulnerabilities, and technical debt identified in analysis documents with automated verification.

Codebase Health Analyzer

Conducts multi-domain codebase audits to identify bugs, technical debt, security vulnerabilities, and documentation gaps with actionable fix suggestions.

Frontend Unit Test Generator

Automatically detects frontend testing frameworks and generates comprehensive unit tests for components, functions, and modules.

SDLC Quality Review

Validates implementation quality and plan compliance by performing automated testing, linting, and build checks within agentic workflows.

Condition-Based Waiting

Replaces arbitrary timeouts with condition polling to eliminate flaky tests and timing race conditions.

Controller Unit Testing

Generates standardized Vitest unit tests for Hono.js controllers by mocking services and request contexts.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure all production code is verified by failing tests before implementation.

Intelligent Test Fixer

Systematically identifies, groups, and resolves failing tests using a smart prioritization strategy to restore suite health.

Verified Success Protocol

Enforces rigorous verification of task completion by requiring fresh evidence before any success claims are made.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within your application code.

Defense-in-Depth Validation

Implements multi-layered data validation and Shannon validation gates to eliminate bugs structurally across every system layer.

Security & Compliance Agent

Secures backend applications against OWASP threats and ensures regulatory compliance through automated scanning and robust authentication patterns.

AIDA Project Fixer

Automates the process of fixing full-stack projects to pass 19 comprehensive quality gates, including testing, coverage, and integration standards.

AIDA: Multi-Agent Project Generator

Generates complete, production-ready projects using multi-agent orchestration with strict TDD and quality gate enforcement.

Bats Testing Patterns

Master the Bash Automated Testing System (Bats) to write robust unit and integration tests for shell scripts and utilities.

Performance, Accessibility & Security

Optimizes React applications for speed, inclusive design, and security hardening using production-ready patterns.

Systematic Debugging

Eliminates software bugs by enforcing a rigorous, four-phase root cause analysis process before any code changes are made.

Test-Driven Development (TDD) Mastery

Enforces a strict Red-Green-Refactor workflow to ensure high code quality and reliable software delivery.

Command Permission Manager (cc-allow)

Manages fine-grained bash command permissions and security policies for Claude Code execution.

Lima Sandbox Testing

Runs Claude Code integration and end-to-end tests within isolated Lima virtual machine sandboxes.