{ "name": "testing-handbook-skills", "version": "1.0.1", "description": "Skills from the Trail of Bits Application Security Testing Handbook (appsec.guide)", "author": { "name": "Paweł Płatek" } }
Claude Plugin
testing-handbook-skills
Skills from the Trail of Bits Application Security Testing Handbook (appsec.guide)
Editor's Note
Skills from the Trail of Bits Application Security Testing Handbook (appsec.guide)
Plugin Overview
This item is backed by a plugin manifest rather than a `SKILL.md` file, so the most useful fields are surfaced here first.
Plugin Name
testing-handbook-skills
Version
1.0.1
Author
Paweł Płatek
Manifest Description
Skills from the Trail of Bits Application Security Testing Handbook (appsec.guide)
Raw Manifest
The structured plugin fields above are derived from the same upstream manifest shown below.
Related Items
Claude Plugin
trailmark
Builds multi-language source code graphs for security analysis: call graphs, attack surface mapping, blast radius, taint propagation, complexity hotspots, and entry point enumeration. Generates Mermaid diagrams (call graphs, class hierarchies, dependency maps, heatmaps). Compares code graph snapshots for structural diff and evolution analysis. Runs graph-informed mutation testing triage (genotoxic). Generates mutation-driven test vectors (vector-forge). Extracts crypto protocol message flows and converts Mermaid diagrams to ProVerif models. Projects SARIF and weAudit findings onto code graphs. Use when analyzing call paths, mapping attack surface, visualizing code architecture, triaging survived mutants, generating cryptographic test vectors, diagramming crypto protocols, formally verifying protocols, or augmenting audits with static analysis findings.
Claude Plugin
ceo-quality-controller-agent
Universal quality control orchestrator and final authority for any software development project. Dynamically discovers and coordinates with available sub-agents, performs comprehensive multi-dimensional quality assessment, security validation, and deployment readiness verification. Adapts to any project type, programming language, or development framework while maintaining enterprise-grade quality standards. Examples: <example>Context: Code changes ready for review across any project. user: 'Please review this code before commit' assistant: 'I'll use the 1-ceo-quality-control-agent to orchestrate comprehensive quality validation, discover available specialists, and perform final security scanning before approval.' <commentary>Universal quality control requires comprehensive validation across all dimensions regardless of project type.</commentary></example> <example>Context: Multi-agent work completion needing validation. user: 'Several agents completed their tasks, need quality review' assistant: 'Let me engage the 1-ceo-quality-control-agent to coordinate comprehensive validation across all completed work and ensure quality standards.' <commentary>Multi-agent coordination and quality validation applies to any development project.</commentary></example>
Claude Plugin
security-suite
Complete security hardening for Claude Code workflows. Includes security auditor agent, automated checks, pre-commit hooks, and compliance commands.
Claude Plugin
audit-context-building
Build deep architectural context through ultra-granular code analysis before vulnerability hunting
