Security & Testing Agent Skills

Security Reviewer

Performs comprehensive security audits, threat modeling, and SLSA compliance checks to ensure production-grade software security.

Security Analyst

Performs expert-level security audits, vulnerability assessments, and compliance mapping using industry standards like OWASP and CVSS v3.1.

CodeQL Security Analysis

Interprets CodeQL SARIF outputs to identify, validate, and remediate complex security vulnerabilities through deep semantic dataflow analysis.

Hardened Outline-Driven Development

Orchestrates multi-layer validation pipelines across proofs, specifications, types, contracts, and tests to ensure rigorous software correctness.

Zero Trust Architecture

Implements zero-trust security principles including ZTNA, micro-segmentation, and identity-first access for cloud-native applications.

Test Pyramid Design

Architects optimized test distribution strategies and identifies testing anti-patterns to ensure fast, reliable development pipelines.

Local Service Integration Testing

Enforces integration testing against real local services like databases, caches, and queues to catch bugs that mocks miss.

Testing Strategy Framework

Implements comprehensive software testing architectures using TDD methodology, the test pyramid, and automated validation patterns.

Security Audit & Hardening

Conducts comprehensive security audits for backend systems to identify vulnerabilities in authentication, encryption, and access control.

Testing & Quality Assurance

Automates unit, integration, and E2E testing along with code quality checks for complex backend and bot workflows.

Odoo Code & Security Audit

Performs multi-dimensional audits on Odoo codebases to identify security vulnerabilities, code quality issues, and performance bottlenecks.

IaC Security Auditor

Audits Terraform plan files for security vulnerabilities and compliance policy violations to ensure infrastructure integrity before deployment.

Test-Driven Development (TDD)

Enforces a strict test-first development cycle to ensure high-quality code and robust feature implementations.

Gemini 3 Flash Integration

Empowers Claude with Gemini 3 Flash's 1M token context for high-speed code analysis, prioritized security audits, and root-cause debugging.

Rust Quality & Convention Reviewer

Performs deep code quality audits and enforces strict Rust architectural conventions and security standards.

Security Patterns & OWASP Best Practices

Implements secure coding standards and OWASP-aligned patterns to protect applications from vulnerabilities like SQL injection, XSS, and broken authentication.

AI Architecture & Security Consultant

Performs deep architectural reviews, security audits, and complex code analysis by leveraging 100+ AI models via LiteLLM.

Data Privacy & Compliance

Enforces strict privacy standards and data protection protocols including GDPR, CCPA, and consent-first tracking.

Kubernetes & OpenShift Security Hardening

Automates security assessments, compliance auditing, and infrastructure hardening for Kubernetes and OpenShift clusters.

Breenix Memory Debugging

Diagnoses and resolves complex kernel memory issues including page faults, double faults, and allocator failures within the Breenix operating system.

Python pytest Patterns

Implements modern pytest patterns for robust Python unit, integration, and asynchronous testing.

Windows UI Automation

Automates Windows desktop applications using UI Automation (UIA) and Win32 APIs with a focus on security, accessibility, and robust process interaction.

Production Code Standards

Enforces high-quality, production-ready coding standards using the CLAUDE Framework, TDD, and rigorous security protocols.

Security Essentials

Implements industry-standard security protocols and OWASP best practices to safeguard applications against common vulnerabilities and data breaches.

Testing Fundamentals

Implements rigorous TDD workflows and comprehensive testing strategies to ensure 80%+ code coverage and production-grade software quality.

MERN Code Reviewer

Performs comprehensive security, performance, and architecture audits for MongoDB, Express, React, and Node.js projects.

Breenix Integration Test Authoring

Streamlines the creation of kernel-level integration tests for Breenix using QEMU virtualization and serial signal monitoring.

Systematic Debugging

Facilitates document-driven kernel debugging through a structured four-phase pattern of problem analysis and evidence collection.

Breenix CI Failure Analysis

Analyzes and diagnoses GitHub Actions CI/CD failures for Breenix kernel development, identifying root causes like kernel panics, page faults, and test timeouts.

Breenix Code Quality Check

Enforces strict code quality standards and pre-commit verification for Breenix kernel development through compiler checks, linting, and log analysis.