Genotoxic
技能 活跃Graph-informed mutation testing triage. Parses codebases with Trailmark, runs mutation testing and necessist, then uses survived mutants, unnecessary test statements, and call graph data to identify false positives, missing test coverage, and fuzzing targets. Use when triaging survived mutants, analyzing mutation testing results, identifying test gaps, finding fuzzing targets from weak tests, running mutation frameworks (including circomvent and cairo-mutants), or using necessist.
To provide developers and security analysts with a systematic way to triage and prioritize issues found through mutation testing and test analysis, leading to more robust and secure code.
功能
- Graph-informed mutation testing triage
- Analysis of survived mutants and test statement removals
- Identification of false positives, missing tests, and fuzzing targets
- Support for multiple mutation frameworks and languages
- Integration with code graph analysis for context
使用场景
- Triaging survived mutants after mutation testing
- Analyzing mutation testing results to find test gaps
- Identifying functions that need fuzz harnesses instead of unit tests
- Prioritizing test improvements using data flow context
- Filtering harmless mutants and finding unnecessary test statements
非目标
- Replacing the need to write initial tests
- Performing pure documentation or configuration changes
- Analyzing single-file scripts with trivial logic
- Falling back to manual analysis when tooling is not installed
工作流
- Build code graph with trailmark
- Run mutation testing framework
- Run necessist (optional, parallel)
- Triage findings using graph data
- Generate categorized report
实践
- Mutation testing
- Test analysis
- Code quality
- Security analysis
先决条件
- trailmark installed
- A mutation testing framework for the target language
- necessist (optional, recommended)
- An existing test suite that passes
- macOS environment: Run 'ulimit -n 1024' before any 'mull-runner' invocation
Trust
- warning:Issues AttentionIn the last 90 days, 13 issues were opened and 4 were closed, indicating a slow response rate to open issues.
安装
请先添加 Marketplace
/plugin marketplace add trailofbits/skills/plugin install trailmark@trailofbits质量评分
类似扩展
Cleanup Cycles
100Detect and untangle circular dependencies. Runs madge/skott (TS), pycycle (Py), or compiler-only checks (Go/Rust). Auto-fixes leaf-extractable cycles; reports core cycles for human review. Use when the user asks to find circular imports, fix dependency cycles, or untangle module graph. Example queries — "find circular imports", "fix dependency cycles", "untangle our module graph", "why is madge complaining".
Lean Ctx
100AI 代理的上下文运行时 — 包含 59 个 MCP 工具、10 种读取模式、95+ 种 shell 模式、支持 18 种语言的 tree-sitter AST。将 LLM 上下文压缩高达 99%。用于读取文件、运行 shell 命令、搜索代码或探索目录。如果不存在,则自动安装。
Semgrep Rule Creator
100Creates custom Semgrep rules for detecting security vulnerabilities, bug patterns, and code patterns. Use when writing Semgrep rules or building custom static analysis detections.
Safe Mode
100Prevent destructive operations using Claude Code hooks. Three modes — cautious (warn on dangerous commands), lockdown (restrict edits to one directory), and clear (remove restrictions). Uses PreToolUse matchers for Bash, Edit, and Write.
Fixflow
100使用严格的交付工作流执行编码任务:构建完整计划、分步实现、持续运行测试,并默认在每一步 (`per_step`) 后提交。当用户要求行为驱动交付或需求不明确时,支持显式提交策略覆盖 (`final_only`, `milestone`) 和可选的 BDD(给定/当/则)。
Definition Of Done
100Mandatory checks to run before completing any task that touches md files or dart code in this repository.