nsheaps/test
plugins/sdlc-utils/skills/test/SKILL.md
Testing strategy and validation. Use when the user asks about "test strategy", "writing tests", "test coverage", "test plan", "validation", "QA", "how to test this", or when defining testing requirements for a feature. Covers test types, coverage expectations, and validation workflows.
$ install --global
skillsauthnpx skillsauth add nsheaps/ai-mktpl testInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 22, 2026, 4:17 PM37.4s1 file scanned
SKILL.md
- name:
- test
- description:
- >
Testing
Guidelines for testing during the software development lifecycle.
Test Types
| Type | Scope | When to write | | ----------- | ---------------------------- | -------------------------- | | Unit | Individual functions/modules | During implementation | | Integration | Component interactions | After components are built | | E2E | Full user workflows | After integration | | Smoke | Critical path verification | Before deployment |
Workflow
Step 1: Define Test Strategy
Before writing tests, determine:
- What needs to be tested (from the spec)
- What test types are appropriate
- What the project's existing test patterns look like
- What tools/frameworks are already in use
Step 2: Write Tests
- Follow existing test patterns in the codebase
- Test behavior, not implementation details
- Cover happy paths, error paths, and edge cases
- Keep tests independent and deterministic
- Name tests descriptively (what is being tested and expected outcome)
Step 3: Validate Coverage
- Run the full test suite, not just new tests
- Check that new code has adequate coverage
- Verify tests actually catch the bugs they claim to prevent
- Ensure CI runs the same tests as local
Step 4: Maintain Tests
- Update tests when requirements change
- Delete tests for removed functionality
- Keep test execution fast (prefer unit over E2E where possible)
Coverage Expectations
- New code: aim for meaningful coverage of all public interfaces
- Bug fixes: must include a regression test
- Refactors: existing tests should still pass without modification
Anti-Patterns
| Anti-Pattern | Instead | | ----------------------- | ----------------------------------------- | | Testing implementation | Test behavior and outputs | | Flaky tests | Make tests deterministic | | Testing only happy path | Cover errors and edge cases | | Skipping CI validation | CI is the source of truth | | Giant test files | Organize tests to mirror source structure |
Related Skills
nsheaps/claude-code
tools
VerifiedTrustedCommunity
Reference material for Claude Code internals — the on-disk layout under ~/.claude and project-scope .claude, the plugin cache, session-env propagation, and the full hook lifecycle. Auto-recall when working on Claude-Code-related tasks: writing or debugging hooks, authoring plugins, inspecting session state, troubleshooting why an env var is or isn't visible to a Bash tool call, or when paths under ~/.claude or ~/.claude/plugins/ come up.
3SKILL.mdUpdated May 6, 2026
nsheaps/github-app-token
development
VerifiedTrustedCommunity
Manage GitHub App installation tokens in Claude Code sessions. Use when tokens expire, auth errors occur in long-running sessions, or when setting up GitHub App credentials for agent teams. <example>my github token expired</example> <example>refresh the github app token</example> <example>check token status</example> <example>set up github app authentication for this session</example>
3SKILL.mdUpdated Apr 22, 2026
nsheaps/auto-config
tools
VerifiedTrustedCommunity
Auto-detect project formatting tools and configure edit-utils settings
3SKILL.mdUpdated Apr 22, 2026
nsheaps/op
tools
VerifiedTrustedCommunity
Use this skill when the user asks about 1Password, secrets management, retrieving credentials, using op CLI, service accounts, secret references, vault operations, or any task involving the 1Password CLI (op). Also use when needing to inject secrets into environment variables, read passwords or API keys from 1Password, or manage 1Password items from the command line.
3SKILL.mdUpdated Apr 22, 2026