Testing Security

from "obra/superpowers"

Use when completing tasks, implementing major features, or before merging to verify work meets requirements

from "obra/superpowers"

Use when implementation is complete, all tests pass, and you need to decide how to integrate the work - guides completion of development work by presenting structured options for merge, PR,...

from "obra/superpowers"

Use when you have a written implementation plan to execute in a separate session with review checkpoints

from "obra/superpowers"

Use when implementing any feature or bugfix, before writing implementation code

from "obra/superpowers"

Use when receiving code review feedback, before implementing suggestions, especially if feedback seems unclear or technically questionable - requires technical rigor and verification, not...

from "obra/superpowers"

Use when encountering any bug, test failure, or unexpected behavior, before proposing fixes

from "affaan-m/everything-claude-code"

Verification loop for Quarkus projects: build, static analysis, tests with coverage, security scans, native compilation, and diff review before release or PR.

from "affaan-m/everything-claude-code"

Test-driven development for Quarkus 3.x LTS using JUnit 5, Mockito, REST Assured, Camel testing, and JaCoCo. Use when adding features, fixing bugs, or refactoring event-driven services.

from "affaan-m/everything-claude-code"

Quarkus Security best practices for authentication, authorization, JWT/OIDC, RBAC, input validation, CSRF, secrets management, and dependency security.

from "affaan-m/everything-claude-code"

Baseline cross-project coding conventions for naming, readability, immutability, and code-quality review. Use detailed frontend or backend skills for framework-specific patterns.

from "affaan-m/everything-claude-code"

Hunt for exploitable, bounty-worthy security issues in repositories. Focuses on remotely reachable vulnerabilities that qualify for real reports instead of noisy local-only findings.

from "affaan-m/everything-claude-code"

RFC-driven multi-agent DAG execution pattern with quality gates, merge queues, and work unit orchestration.

from "affaan-m/everything-claude-code"

Pythonic idioms, PEP 8 standards, type hints, and best practices for building robust, efficient, and maintainable Python applications.

from "affaan-m/everything-claude-code"

Write-time code quality enforcement using Plankton — auto-formatting, linting, and Claude-powered fixes on every file edit via hooks.

from "affaan-m/everything-claude-code"

Comprehensive Perl security covering taint mode, input validation, safe process execution, DBI parameterized queries, web security XSS/SQLi/CSRF , and perlcritic security policies.

from "affaan-m/everything-claude-code"

C# and .NET testing patterns with xUnit, FluentAssertions, mocking, integration tests, and test organization best practices.

from "affaan-m/everything-claude-code"

Patterns for continuous autonomous agent loops with quality gates, evals, and recovery controls.

from "affaan-m/everything-claude-code"

Spring Boot项目验证循环：构建、静态分析、测试覆盖、安全扫描，以及发布或PR前的差异审查。

from "affaan-m/everything-claude-code"

Java Spring Boot 服务中认证/授权、验证、CSRF、密钥、标头、速率限制和依赖安全性的 Spring Security 最佳实践。

from "affaan-m/everything-claude-code"

Rust测试模式，包括单元测试、集成测试、异步测试、基于属性的测试、模拟和覆盖率。遵循TDD方法学。

from "affaan-m/everything-claude-code"

地道的Rust模式、所有权、错误处理、特质、并发，以及构建安全、高性能应用程序的最佳实践。

from "affaan-m/everything-claude-code"

使用pytest的Python测试策略，包括TDD方法、夹具、模拟、参数化和覆盖率要求。

from "affaan-m/everything-claude-code"

使用Plankton进行编写时代码质量强制执行——通过钩子在每次文件编辑时自动格式化、代码检查和Claude驱动的修复。

from "affaan-m/everything-claude-code"

使用Test2::V0、Test::More、prove runner、模拟、Devel::Cover覆盖率和TDD方法的Perl测试模式。