Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

laurigates/skaffold-testing

Name: skaffold-testing
Author: laurigates

container-plugin/skills/skaffold-testing/SKILL.md

npx skillsauth add laurigates/claude-plugins skaffold-testing

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Skaffold Testing

When to Use This Skill

| Use this skill when... | Use another skill instead when... | |------------------------|-----------------------------------| | Configuring container-structure-tests | Writing Dockerfiles (use container skills) | | Adding security scans to Skaffold pipelines | General Skaffold build/deploy (use skaffold-development) | | Setting up post-deploy verification | Unit testing application code | | Validating image contents pre-deploy | Kubernetes manifest authoring |

Testing Lifecycle

Build -> Test -> Deploy -> Verify
          ^                  ^
     Pre-deploy         Post-deploy

| Stage | Purpose | Runs During | |-------|---------|-------------| | test | Validate images before deployment | dev, run, test | | verify | Validate deployment works correctly | dev, run, verify |

Failed tests block deployment. Use --skip-tests to bypass.

Test Stage Overview

Two mechanisms for pre-deploy validation:

| Type | Purpose | Tool Required | |------|---------|---------------| | structureTests | Validate image contents | container-structure-test binary | | custom | Run arbitrary commands | None (uses $IMAGE env var) |

Container Structure Tests

Validate image contents without running the container.

Configuration

apiVersion: skaffold/v4beta11
kind: Config
test:
  - image: my-app
    structureTests:
      - ./tests/structure/*.yaml
    structureTestsArgs:
      - --driver=tar      # Faster, no Docker daemon needed
      - -q                # Quiet output

Test Types Summary

| Type | Purpose | Key Fields | |------|---------|------------| | commandTests | Verify binaries work | command, args, expectedOutput, exitCode | | fileExistenceTests | Verify files present/absent | path, shouldExist, permissions, uid, gid | | fileContentTests | Validate file contents | path, expectedContents, excludedContents | | metadataTest | Validate image config | envVars, user, entrypoint, cmd, exposedPorts, workdir |

Custom Tests

Run arbitrary commands with access to built image via $IMAGE env var.

test:
  - image: my-app
    custom:
      - command: grype $IMAGE --fail-on high --only-fixed
        timeoutSeconds: 300
      - command: trivy image --exit-code 1 --severity HIGH,CRITICAL $IMAGE
        timeoutSeconds: 300

Dependencies

Control when tests re-run:

custom:
  - command: ./scripts/integration-test.sh
    timeoutSeconds: 600
    dependencies:
      paths:
        - "src/**/*.go"
        - "go.mod"
      ignore:
        - "**/*_test.go"

Verify Stage (Post-Deploy)

Run integration tests after deployment succeeds.

Execution Modes

| Mode | Environment | Use Case | |------|-------------|----------| | local (default) | Docker on host | Quick tests, local dev | | kubernetesCluster | K8s Job | Integration tests needing cluster access |

Basic Configuration

verify:
  - name: health-check
    container:
      name: curl-test
      image: curlimages/curl:latest
      command: ["/bin/sh"]
      args: ["-c", "curl -f http://my-app.default.svc:8080/health"]
    executionMode:
      kubernetesCluster: {}

Agentic Optimizations

| Context | Command | |---------|---------| | Quick structure test | container-structure-test test --driver=tar -q --image $IMAGE --config tests/structure/security.yaml | | Security scan (critical only) | grype $IMAGE --fail-on critical -q | | Skip tests in dev | skaffold dev --skip-tests | | Run only tests | skaffold test | | Run only verify | skaffold verify | | CI with JUnit output | container-structure-test test --image $IMAGE --config test.yaml --test-report junit.xml |

Quick Reference

Container Structure Test Flags

| Flag | Description | |------|-------------| | --driver=tar | Use tar driver (faster, no Docker daemon) | | --driver=docker | Use Docker driver (default) | | -q | Quiet output | | --test-report FILE | Generate test report | | --output json | JSON output format |

Skaffold Test Flags

| Flag | Description | |------|-------------| | --skip-tests | Skip test phase | | -p PROFILE | Use specific profile | | --build-artifacts FILE | Use pre-built artifacts |

Custom Test Environment

| Variable | Description | |----------|-------------| | $IMAGE | Built image with tag/digest |

For detailed examples, advanced patterns, and best practices, see REFERENCE.md.

laurigates/skaffold-testing

container-plugin/skills/skaffold-testing/SKILL.md

Container image validation with Skaffold test/verify stages — container-structure-tests, security scans. Use when configuring pre-deploy tests or integration tests in Skaffold.

35 stars

testing

Updated May 20, 2026

$ install --global

skillsauth

npx skillsauth add laurigates/claude-plugins skaffold-testing

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 20, 2026, 8:14 AM224.4s2 files scanned

SKILL.md

name:: skaffold-testing
description:: Container image validation with Skaffold test/verify stages — container-structure-tests, security scans. Use when configuring pre-deploy tests or integration tests in Skaffold.
user-invocable:: false
allowed-tools:: Bash, Read, Write, Edit, Grep, Glob, TodoWrite
created:: 2025-12-23
modified:: 2026-05-09
reviewed:: 2025-12-23

Skaffold Testing

When to Use This Skill

Testing Lifecycle

Build -> Test -> Deploy -> Verify
          ^                  ^
     Pre-deploy         Post-deploy

Failed tests block deployment. Use --skip-tests to bypass.

Test Stage Overview

Two mechanisms for pre-deploy validation:

Container Structure Tests

Validate image contents without running the container.

Configuration

apiVersion: skaffold/v4beta11
kind: Config
test:
  - image: my-app
    structureTests:
      - ./tests/structure/*.yaml
    structureTestsArgs:
      - --driver=tar      # Faster, no Docker daemon needed
      - -q                # Quiet output

Test Types Summary

Custom Tests

Run arbitrary commands with access to built image via $IMAGE env var.

test:
  - image: my-app
    custom:
      - command: grype $IMAGE --fail-on high --only-fixed
        timeoutSeconds: 300
      - command: trivy image --exit-code 1 --severity HIGH,CRITICAL $IMAGE
        timeoutSeconds: 300

Dependencies

Control when tests re-run:

custom:
  - command: ./scripts/integration-test.sh
    timeoutSeconds: 600
    dependencies:
      paths:
        - "src/**/*.go"
        - "go.mod"
      ignore:
        - "**/*_test.go"

Verify Stage (Post-Deploy)

Run integration tests after deployment succeeds.

Execution Modes

Basic Configuration

verify:
  - name: health-check
    container:
      name: curl-test
      image: curlimages/curl:latest
      command: ["/bin/sh"]
      args: ["-c", "curl -f http://my-app.default.svc:8080/health"]
    executionMode:
      kubernetesCluster: {}

Agentic Optimizations

Quick Reference

Container Structure Test Flags

Skaffold Test Flags

| Flag | Description | |------|-------------| | --skip-tests | Skip test phase | | -p PROFILE | Use specific profile | | --build-artifacts FILE | Use pre-built artifacts |

Custom Test Environment

| Variable | Description | |----------|-------------| | $IMAGE | Built image with tag/digest |

For detailed examples, advanced patterns, and best practices, see REFERENCE.md.

Related Skills

laurigates/comfyui-node-scaffold

tools

VerifiedTrustedCommunity

Scaffold a new ComfyUI custom-node repo (pyproject, CI, release-please, vitest+pytest, JS extension skeleton) in the picker/gesture vein. Use when bootstrapping or init-ing a comfyui node pack.

35SKILL.mdUpdated Jun 5, 2026

laurigates/comfyui-node-scaffold

laurigates/comfy-node

tools

VerifiedTrustedCommunity

Orchestrate a ComfyUI node pack from idea to registry: scaffold, create + seed the repo, open the gitops adoption PR. Use when releasing or spinning up a new comfyui node pack.

35SKILL.mdUpdated Jun 5, 2026

laurigates/comfy-node

laurigates/endpoint-security-cpu

testing

VerifiedTrustedCommunity

macOS EndpointSecurity/EDR high CPU & battery drain. Use when Kandji ESF / XProtect pegs a core; trace the exec storm via powermetrics + eslogger.

35SKILL.mdUpdated Jun 4, 2026

laurigates/endpoint-security-cpu

laurigates/odiff-image-diffing

development

VerifiedTrustedCommunity

odiff pixel-by-pixel image diffing. Use when comparing screenshots, detecting visual regressions, diffing before/after PNGs, asserting golden images.

35SKILL.mdUpdated May 30, 2026

laurigates/odiff-image-diffing

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/laurigates/claude-plugins.git

# Copy into Claude Code skills folder (global)
cp -r claude-plugins/container-plugin/skills/skaffold-testing ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

laurigates/claude-plugins

35 stars

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT