Guidance for identifying and fixing security vulnerabilities in code. This skill should be used when tasks involve fixing CWE-classified vulnerabilities, addressing security flaws, patching injection vulnerabilities, or responding to security-related test failures.
Guides the creation of self-signed SSL/TLS certificates using OpenSSL, including key generation, certificate creation, combined PEM files, and verification scripts. This skill should be used when tasks involve generating self-signed certificates, creating SSL certificate infrastructure, or writing certificate verification scripts.
Guidance for identifying and fixing security vulnerabilities in code. This skill should be used when asked to fix security issues, address CVEs or CWEs, remediate vulnerabilities like injection attacks (SQL, command, CRLF, XSS), or when working with failing security-related tests.
This skill provides guidance for generating self-signed SSL/TLS certificates using OpenSSL. Use this skill when tasks involve creating private keys, self-signed certificates, certificate signing requests (CSRs), or combined PEM files. It covers verification strategies and common pitfalls in certificate generation workflows.
Python testing with pytest covering fixtures, parametrization, mocking, and test organization for reliable test suites
Comprehensive React component testing with Jest and React Testing Library covering configuration, mocking strategies, async testing patterns, hooks testing, and integration testing best practices
Browser automation, visual testing, and screenshot validation using Playwright MCP server for accelerated web development. Master visual regression testing, automated UI testing, and cross-browser validation.
Designs integration and E2E tests with mock boundaries. Use when: writing E2E tests, integration tests, or reviewing test quality.
Shell script testing expertise using bash test framework patterns from unix-goto, covering test structure (arrange-act-assert), 4 test categories, assertion patterns, 100% coverage requirements, and performance testing
Expert code review specialist. Use when reviewing code for quality, security, maintainability, or when examining recent changes
Expert code review specialist. Use when reviewing code for quality, security, maintainability, or when examining recent changes
Convert C/C++ code into Strict SysY testcases using Python automation scripts.
Comprehensive testing patterns for this Neovim plugin. Covers table-driven tests, async patterns, mocking, fixtures, and buffer testing. Apply when writing or reviewing tests.
Comprehensive Agentforce testing skill with test execution, coverage analysis, and agentic fix loops. Run agent tests via sf CLI, analyze topic/action coverage, generate test specs, and automatically fix failing agents with 100-point scoring.
Enforces strict Git workflow rules including manual commit triggers, Pint formatting, and Conventional Commits.
Receive and act on code review feedback with technical rigor, not performative agreement or blind implementation
Enforces Tailwind CSS v4 standards, including CSS-first configuration and new utility syntax.
Check all external inputs for validity - garbage in, nothing out, never garbage out
Validates code against the project's critical business logic (Multi-tenancy, RBAC, IDOR, SaaS Limits).
RSpec testing patterns, factories, mocks, and test best practices
Refactor with tests first, one change at a time, never mix refactoring with bug fixes or new features
TDD for process documentation - test with subagents before writing, iterate until bulletproof
