Vector Forge
技能 活跃Mutation-driven test vector generation. Finds implementations of a cryptographic algorithm or protocol, runs mutation testing to identify escaped mutants, then generates new test vectors that deliberately exercise the uncovered code paths. Compares before/after mutation kill rates to prove vector effectiveness. Use when generating cryptographic test vectors, measuring Wycheproof coverage gaps, finding escaped mutants via mutation testing, creating cross-implementation test suites, or improving test vector coverage for crypto primitives.
To systematically enhance the test coverage of cryptographic implementations by generating targeted test vectors that address identified gaps and potential vulnerabilities.
功能
- Mutation-driven test vector generation
- Call graph analysis for mutant triage
- Cross-implementation vector verification
- Identification of escaped mutants
- Generation of negative test vectors
使用场景
- Generating test vectors for cryptographic algorithms or protocols
- Evaluating existing test vector coverage against implementation
- Finding code paths not exercised by any test vector
- Creating cross-implementation test suites for crypto primitives
非目标
- Testing application logic rather than algorithm implementations
- Generating vectors when no implementations exist
- Creating vectors for algorithms lacking public test vectors
工作流
- Discover implementations to test
- Create/adapt test vector harness for each implementation
- Run mutation testing with existing vectors (baseline)
- Classify escaped mutants using call graph analysis
- Create test vectors targeting identified escapes
- Re-run mutation testing with new vectors and compare results
先决条件
- trailmark installed
- At least one implementation of the target algorithm in a language with mutation testing support
- A test harness that consumes test vectors and exercises the implementation
- A mutation testing framework for the target language
Trust
- warning:Issues AttentionIn the last 90 days, 13 issues were opened and 4 were closed, indicating a low closure rate and potentially slow maintainer response.
安装
请先添加 Marketplace
/plugin marketplace add trailofbits/skills/plugin install trailmark@trailofbits质量评分
类似扩展
Senior Backend Engineer
100Designs and implements backend systems including REST APIs, microservices, database architectures, authentication flows, and security hardening. Use when the user asks to "design REST APIs", "optimize database queries", "implement authentication", "build microservices", "review backend code", "set up GraphQL", "handle database migrations", or "load test APIs". Covers Node.js/Express/Fastify development, PostgreSQL optimization, API security, and backend architecture patterns.
Secrets Management
100Implement secure secrets management for CI/CD pipelines using Vault, AWS Secrets Manager, or native platform solutions. Use when handling sensitive credentials, rotating secrets, or securing CI/CD environments.
Semgrep Rule Creator
100Creates custom Semgrep rules for detecting security vulnerabilities, bug patterns, and code patterns. Use when writing Semgrep rules or building custom static analysis detections.
Safe Mode
100Prevent destructive operations using Claude Code hooks. Three modes — cautious (warn on dangerous commands), lockdown (restrict edits to one directory), and clear (remove restrictions). Uses PreToolUse matchers for Bash, Edit, and Write.
Prompt Guard
100Meta's 86M prompt injection and jailbreak detector. Filters malicious prompts and third-party data for LLM apps. 99%+ TPR, <1% FPR. Fast (<2ms GPU). Multilingual (8 languages). Deploy with HuggingFace or batch processing for RAG security.
Soul Guardian
100Drift detection + baseline integrity guard for agent workspace files with automatic alerting support