Testing & Security

Expert LLC operations management for ID8Labs LLC (Florida single-member LLC). 9 specialized agents providing PhD-level expertise in compliance, tax strategy, asset protection, and business operations. Triggers on keywords like LLC, taxes, expenses, annual report, EIN, compliance, bookkeeping, deductions, filing, sunbiz, quarterly, S-Corp, retirement, audit, insurance, cash flow, mentor, teach, learn.

Apply systematic debugging methodology using medical differential diagnosis principles. Trigger when AI modifies working code and anomalies occur, or when users report unexpected test results or execution failures. Use observation without preconception, fact isolation, differential diagnosis lists, deductive exclusion, experimental verification, precise fixes, and prevention mechanisms.

Comprehensive guide for building serverless applications with Cloudflare Workers. Use when developing Workers, configuring bindings, implementing runtime APIs, testing Workers, using Wrangler CLI, deploying to production, or building edge functions with JavaScript/TypeScript/Python/Rust.

Create and maintain Histoire stories for Vue 3 components. Use when working with .story.vue files, creating visual contracts, or when user mentions Histoire stories or visual testing.

Scans code for security vulnerabilities, hardcoded secrets, and unsafe patterns in React Native and Expo applications. Use before merging sensitive changes or as part of a regular audit.

Handle unexpected test behaviors and recover from TDD issues

This skill guides working with Neovim configuration including testing changes headlessly, managing plugins with lazy.nvim, configuring LSP servers, and troubleshooting startup errors. Use this when modifying nvim config files or debugging nvim issues.

Testing best practices for modern Python development. Activated when working with tests, pytest, Hypothesis property-based testing, Atheris fuzz testing, test coverage, test organization, or mutation testing.

Automatically generate test scaffolding when user writes new code without tests or mentions needing tests. Supports unit, integration, e2e, and data tests for PHP and JavaScript. Invoke when user mentions "tests", "testing", "coverage", "write tests", or shows new untested code.

Row Level Security policy templates for Supabase - multi-tenant patterns, user isolation, role-based access, and secure-by-default configurations. Use when securing Supabase tables, implementing RLS policies, building multi-tenant AI apps, protecting user data, creating chat/RAG systems, or when user mentions row level security, RLS, Supabase security, tenant isolation, or data access policies.

Implement comprehensive input validation on both client and server sides, using allowlists over blocklists, sanitizing user input, and providing specific error messages to prevent security vulnerabilities. Use this skill when writing validation logic for forms, API endpoints, function parameters, or any user input. Use this skill when implementing server-side validation to ensure data integrity and security, adding client-side validation for immediate user feedback, or sanitizing input to prevent injection attacks. Use this skill when working with form components, API route handlers, data processing functions, or validation schemas. Use this skill when defining validation rules for data types, formats, ranges, required fields, or business logic constraints across all application entry points.

质量门禁/发布前检查流程生成器。统一输出可复用的质量门禁清单与命令集：跑测试、覆盖率阈值、格式化、lint、依赖漏洞扫描、构建产物检查、变更摘要。用于让 git-manager/test-builder/debug-helper 形成稳定闭环。

Test game mechanics via SQL. Use game_* tools for gameplay flow.

Automatically applies when creating FastAPI endpoints, routers, and API structures. Enforces best practices for endpoint definitions, dependency injection, error handling, and documentation.

Apply pytest best practices and project testing conventions. Use when writing or modifying tests.

Comprehensive Tourplan HostConnect API integration for African safari booking engine. Use this skill for (1) Creating travel bookings, quotes, and itineraries, (2) Building chatbots for travel inquiries, (3) Managing Tourplan API requests for tours, accommodation, cruises, rail, and packages, (4) Generating tailor-made safari itineraries, (5) Processing XML-based API interactions with authentication and error handling. This skill includes complete API workflows, XML templates, booking lifecycle management, and specialized support for This Is Africa's booking system requirements.

Automate container image updates for Kubernetes workloads managed by Argo CD. USE WHEN configuring ArgoCD Image Updater, setting up automatic image updates, configuring update strategies (semver, digest, newest-build, alphabetical), implementing git write-back, troubleshooting image update issues, or working with ImageUpdater CRDs. Covers installation, configuration, authentication, and best practices.

Use for bugs/test failures. Reproduce, isolate root cause, fix, and validate with evidence.

Testing procedures for Kalahari project. Use for running tests and analyzing results.

This skill should be used when the user asks "what plugins are available", "list dev tools", "what MCP servers can I use", "enable code intelligence", or needs to discover available development plugins like serena, context7, or playwright.