Testing & Security

Compile MQL5 indicators via CLI using X: drive mapping to bypass 'Program Files' path spaces issue. Use PROACTIVELY after editing ANY .mq5 or .mqh file. Triggers - after editing MQL5 code, compile, build, MetaEditor, .mq5, .mqh, indicator, script, EA, expert advisor, "test it", "try it", "run it", path space errors. (project)

Comprehensive code quality review and missing logic detection for Dashboard Link SaaS. Use when the user asks to "find missing logic", "review code quality", "check for issues", "ensure quality", "validate code", "find bugs", or any similar vague quality-focused prompts. Also use for PR reviews, pre-deployment checks, and systematic code audits.

Critical guardrail for Supabase database operations ensuring multi-tenant isolation with publication_id filtering, proper use of supabaseAdmin, avoiding SELECT *, error handling patterns, and secure server-side database access. Use when writing database queries, working with supabase, accessing newsletter_campaigns, articles, rss_posts, or any tenant-scoped data.

Runs npm validate/test/smoke gates and emits a JSON gate report with log paths.

Retrofit, OkHttp, REST APIs, JSON serialization, network security. Use when making HTTP requests and integrating APIs.

Create traceability matrix mapping intents (INT-*) to requirements (REQ-*) and requirements to all downstream artifacts (design, code, tests, commits, runtime). Use to visualize and verify complete traceability.

Creates, validates, and updates GitHub Actions workflows for CI/CD. Covers build, test, Maven Central publishing, code quality analysis, Docker builds, and Kubernetes deployments.

Set up a fresh Ubuntu VPS for web development with Node.js, Python, Nginx, PM2, SSL, and security hardening. Use when setting up a new server, configuring web hosting, deploying apps, or helping users create a development playground server.

Boot configuration for Bazzite OS. BIOS/UEFI access, GRUB menu settings,secure boot key enrollment, and Windows dual-boot setup. Use when usersneed to configure boot options or access BIOS settings.

Run and extend the end-to-end HTTP integration tests (SQLite in-memory) for mjr.wtf, covering auth, create/list/delete, redirects, and analytics. Use when changing handlers, middleware, or API contracts.

Generates end-to-end tests for complete user workflows

Manage git worktrees for parallel branch development and PR reviews.Use when asked about: worktrees, working on multiple branches, parallel development,PR review without switching, testing without committing, multiple features simultaneously,long-running builds, comparing branches side-by-side.Integrates with: feature workflow, Azure DevOps work items, GitHub PRs.

Comprehensive Firebase skill for TypeScript/Next.js 16 projects. Use when configuring Firebase services (Firestore Client SDK with aggregations/vector search, Authentication, Storage, Cloud Functions v2, FCM push notifications, App Check bot protection), implementing security rules and indexes, troubleshooting Firebase errors, setting up auth providers (email/password, Google Sign-In), configuring VAPID keys for notifications, custom action URLs, reCAPTCHA Enterprise, replay protection, or resolving permission issues. Covers TypeScript patterns, Next.js 16 SSR/App Router integration, and common pain points like CORS, duplicate documents, notification setup, and bot abuse prevention.

Use when adding Jest testing configuration to Nx projects, running `nx g @nx/jest:configuration`, setting up testing infrastructure, or troubleshooting tests that fail after running the Jest generator. Ensures proper TypeScript moduleResolution (nodenext), testing enhancement libraries (jest-dom, user-event, MSW), and monorepo pattern adherence. Triggers: "add tests", "setup Jest", "configure testing", "Jest not working", "moduleResolution error", "tests failing after generator"

Docker 환경에서 Playwright E2E 테스트 실행. 브라우저 미종료 문제 해결, 스크린샷, 로그 캡처 지원.

Optimize CTA copy, hero sections, and button text for higher conversions using therapy-appropriate frameworks (PAS, AIDA, BAB). Maintains empathetic, non-salesy tone while driving action. Creates A/B test variations, scores conversion potential, and ensures CRPO compliance. Use when user mentions "CTA", "conversion rate", "improve button text", "more bookings", or asks about improving page performance.

Validates tests for test theater anti-patterns. Use when reviewing test code, writing new tests, or when user asks to check tests for quality issues. Ensures tests verify real behavior, not just provide false confidence.

Specialized agent for comprehensive code auditing, security analysis, architecture review, and quality assurance for the BarqNet project. Performs deep analysis of code quality, security vulnerabilities, performance bottlenecks, best practices compliance, and generates detailed audit reports. Use when reviewing code changes, security assessments, or quality checks.

Use this skill when writing or updating SQL queries (query.sql) or Python ETL scripts (query.py) following Mozilla BigQuery ETL conventions. ALWAYS checks for and updates existing tests when modifying queries. Coordinates downstream updates to schemas and tests. Works with bigquery-etl-core, metadata-manager, and sql-test-generator skills.

Design security controls and threat mitigations. Use for features involving auth, data, or external exposure.