Rust

rust-testing is a practical guide for Rust testing patterns, including unit tests, integration tests, async testing, property-based testing, mocks, and coverage. It helps you choose the right test shape and follow a TDD workflow with less guesswork.

rust-patterns is a practical guide for idiomatic Rust development, covering ownership, error handling, traits, concurrency, module boundaries, and backend-focused design choices for safer, cleaner code.

memory-safety-patterns helps agents apply RAII, ownership, smart pointers, and resource cleanup across C, C++, and Rust. Use it to review backend or systems code, reduce leaks and dangling pointers, and guide safer refactors around files, sockets, buffers, and FFI boundaries.

rust-async-patterns is a practical skill for async Rust with Tokio, covering tasks, channels, streams, timeouts, cancellation, tracing, and error handling for backend development.

The libafl skill helps you plan and build modular fuzzers with LibAFL for custom targets, mutation strategies, and security audit workflows. Use this libafl guide to move from target details to a practical harness, feedback model, and run plan with fewer assumptions.

harness-writing helps you design fuzzing harnesses that turn raw bytes into meaningful, reproducible tests for a system under test. Use the harness-writing skill when you need a new fuzz target or want to improve coverage, stability, and bug-finding for Code Generation tasks. It focuses on deterministic input parsing, valid call sequences, and reproducible crashes.

coverage-analysis helps you measure code exercised during fuzzing, spot blockers like magic value checks, and compare harness changes. Use this coverage-analysis skill for Security Audit workflows when you need clear coverage-analysis usage, install guidance, and repeatable coverage-analysis guide decisions.

cargo-fuzz is a Rust/Cargo fuzzing skill for building libFuzzer harnesses, enabling sanitizer-backed runs, and finding crashes in parser, unsafe, and input-handling code. Use this cargo-fuzz guide when you need practical install and usage guidance for security audit and regression testing in Cargo-based projects.

address-sanitizer helps you install and use AddressSanitizer (ASan) to catch memory safety bugs during testing, fuzzing, and crash triage. It is useful for C/C++, Rust unsafe code, and security audit workflows when you need reproducible stack traces and clearer failure signals.

property-based-testing skill guide for writing, reviewing, and improving PBT across languages and smart contracts. Use this property-based-testing guide to spot roundtrip, idempotence, invariant, parser, validator, and normalization cases, choose generators, and decide when property-based-testing is stronger than example-based tests.

entry-point-analyzer helps map state-changing entry points in smart contract codebases for security audit work. It identifies externally callable functions that modify state, groups them by access level, and excludes view, pure, and other read-only paths. Use this entry-point-analyzer guide when you need a focused call-surface inventory for Solidity, Vyper, Solana, Move, TON, or CosmWasm projects.

constant-time-analysis is a security-audit skill for finding timing side-channel risks in cryptographic code before they become exploitable bugs. Use it to review secret-dependent math, branches, comparisons, and compiled output when checking C, C++, Go, Rust, Swift, Java, Kotlin, PHP, JavaScript, TypeScript, Python, or Ruby.

substrate-vulnerability-scanner helps audit Substrate and FRAME pallets for critical issues like arithmetic overflow, panic DoS, bad origin checks, incorrect weights, and unsafe unsigned extrinsics. Use this substrate-vulnerability-scanner skill for Security Audit reviews of runtimes, pallet extrinsics, and weight logic.

solana-vulnerability-scanner is a focused Solana security audit skill for native Rust and Anchor programs. It helps review CPI logic, PDA validation, signer and ownership checks, and sysvar spoofing to catch six critical Solana-specific vulnerabilities before deployment.

cosmos-vulnerability-scanner finds consensus-critical bugs in Cosmos SDK modules, CosmWasm contracts, IBC integrations, and Cosmos EVM stacks. Use this cosmos-vulnerability-scanner guide for security audit workflows, chain-halt risks, fund-loss paths, and pre-launch reviews.

audit-prep-assistant prepares codebases for Security Audit using Trail of Bits' checklist. It helps set review goals, run static analysis, increase test coverage, remove dead code, document risks, and generate supporting artifacts for a cleaner audit handoff.

azure-storage-blob-rust is a practical skill for Rust backend development with Azure Blob Storage. It covers install guidance, the official azure_storage_blob crate, AZURE_STORAGE_ENDPOINT setup, RBAC auth, and core usage for uploading, downloading, container management, and blob listing.

azure-keyvault-secrets-rust is a Rust skill for Azure Key Vault Secrets. It covers storing, reading, updating, deleting, and listing secret metadata with the official azure_security_keyvault_secrets crate, plus authentication, AZURE_KEYVAULT_URL setup, and practical guidance for backend development.

azure-keyvault-keys-rust is the Azure Key Vault Keys skill for Rust backend development. It guides you to the official azure_security_keyvault_keys crate for creating, managing, wrapping, signing, verifying, and using HSM-protected keys with Azure Identity and AZURE_KEYVAULT_URL.

azure-keyvault-certificates-rust helps Rust backend developers create, manage, and use Azure Key Vault X.509 certificates, including self-signed and CA-issued flows. It focuses on the official azure_security_keyvault_certificates crate, installation, authentication, long-running issuance, and correct certificate client usage.

azure-eventhub-rust is a Rust skill for Azure Event Hubs. It helps backend developers send, batch, and consume streaming events with the official azure_messaging_eventhubs crate, with guidance on install, environment setup, consumer start position, and practical usage.

azure-cosmos-rust is the Azure Cosmos DB NoSQL skill for Rust projects. It covers install-ready guidance, official crate selection with azure_data_cosmos, COSMOS_ENDPOINT setup, authentication, partition-aware CRUD, and RoutingStrategy for Database Engineering workflows.

makepad-2.0-events is a Makepad 2.0 skill for event and action handling in Frontend Development. It helps you choose the right layer for on_click, on_render, MatchEvent, and script_eval!, then connect UI interactions to Rust state updates with less guesswork. Use it for install, usage, and workflow guidance.

makepad-2.0-dsl is a practical skill for writing, reading, and fixing Makepad 2.0 DSL `script_mod!` UI code. It helps frontend developers and Rust UI authors use colon syntax, named instances, merge behavior, and Rust bindings correctly, with a clear makepad-2.0-dsl guide for install and usage.