Loading...
Loading...
Found 2,139 Skills
Injection vulnerability testing - SQL, NoSQL, OS Command, SSTI, XXE, and LDAP/XPath injection techniques.
System exploitation testing - Active Directory attacks, privilege escalation (Linux/Windows), and exploit development.
Harden designs for real-world use by systematically identifying and designing for every condition outside the happy path. Part of the Intent design strategy system. Covers state inventories, error recovery, empty states, loading patterns, first-run experiences, stress testing, internationalization readiness, and latency handling. Trigger on: edge cases, error states, empty states, loading states, first-run experience, onboarding, offline mode, "what happens when", "what if the user", "stress test this", "what could go wrong", "harden this design", "edge case review", "what are the failure modes", zero states, timeout handling, or any question about how a design behaves outside ideal conditions. The happy path is a fantasy — this skill designs for the world your users actually live in.
Evaluates ML models for performance, fairness, and reliability. Use for metric selection, cross-validation strategies, overfitting/underfitting diagnosis, hyperparameter tuning, LLM evaluation, A/B testing, and production monitoring for model drift.
World-class QA engineering - systematic testing, automation, and the mindset that finds bugs before users doUse when "QA, quality assurance, testing, test automation, e2e tests, integration tests, regression testing, test coverage, playwright, cypress, selenium, test suite, bug report, test strategy, flaky tests, testing, QA, automation, e2e, integration, regression, quality" mentioned.
Mean-reversion strategy tools including Hurst exponent, half-life estimation, z-score signals, ADF testing, and Ornstein-Uhlenbeck modeling
Performs GraphQL introspection attacks to extract the full API schema including types, queries, mutations, subscriptions, and field definitions from GraphQL endpoints. The tester uses introspection queries to map the attack surface, identifies sensitive fields and mutations, tests for query depth and complexity limits, and exploits GraphQL-specific vulnerabilities including batching attacks, alias-based brute force, and nested query DoS. Activates for requests involving GraphQL security testing, introspection attack, GraphQL enumeration, or GraphQL API penetration testing.
F# testing patterns with xUnit, FsUnit, Unquote, FsCheck property-based testing, integration tests, and test organization best practices.
Test-driven development for Quarkus 3.x LTS using JUnit 5, Mockito, REST Assured, Camel testing, and JaCoCo. Use when adding features, fixing bugs, or refactoring event-driven services.
Risk measurement and stress testing via Longbridge — computes VaR (historical simulation / parametric), CVaR (expected shortfall), max drawdown, Sharpe ratio, Calmar ratio, and runs historical scenario stress tests (2008 GFC, 2020 COVID crash, 2022 rate-hike cycle). Triggers: "风险分析", "VaR", "压力测试", "最大回撤", "夏普比率", "CVaR", "历史情景", "尾部风险", "风险测量", "風險分析", "壓力測試", "最大回撤", "夏普比率", "歷史情景", "尾部風險", "風險測量", "risk analysis", "VaR value at risk", "CVaR", "stress test", "max drawdown", "Sharpe ratio", "Calmar ratio", "tail risk", "historical scenario".
Set up Playwright end-to-end testing in a project, including test configuration, example tests, and CI integration.
Create and manage isolated microVM sandboxes for safe code execution, testing, and development. Use when the user needs to run untrusted code, create isolated environments, execute commands in a sandbox, manage sandbox filesystems, or work with OCI container images in microVMs. Handles sandbox lifecycle, networking, volumes, secrets, and file operations via the msb CLI.