testing-mutation
Testing Mutation
Overview
Use this skill to quantify test effectiveness and prioritize strengthening weak assertions.
Scope Boundaries
- Use when pass-only test status is insufficient for confidence.
- Typical requests:
Find weak tests that do not fail when behavior is changed.Use surviving mutants to guide assertion hardening.Quantify test robustness for critical modules.
- Do not use when:
- Baseline unit/integration coverage is missing.
- The primary goal is load or capacity benchmarking (
performance-*).
Inputs
- Existing tests and module criticality
- Mutation tooling constraints and runtime budget
- Release risk tolerance
Outputs
- Mutation report with surviving mutant triage
- Decision record for target score and remediation strategy
- Verification checklist for strengthened assertions
Workflow
- Select mutation scope by business risk and runtime budget.
- Define acceptable mutation score and exception policy.
- Run mutation analysis and triage surviving mutants.
- Strengthen tests or implementation assertions based on triage.
- Re-run and publish deltas, residual risk, and follow-up plan.
Quality Gates
- Surviving mutants are triaged with explicit rationale.
- Critical-path mutants have remediation plan.
- Runtime cost is balanced with risk coverage.
- Evidence is reproducible and comparable over time.
Failure Handling
- Stop when critical survivors remain without remediation owner.
- Escalate when mutation runtime cost blocks practical adoption.
Bundled Resources
references/trigger-and-examples.md: trigger patterns, anti-patterns, and deliverable expectations.
More from kentoshimizu/sw-agent-skills
graph-algorithms
Graph algorithm workflow for modeling entities/relations and selecting traversal, path, ordering, or flow strategies. Use when correctness or performance depends on graph representation and algorithm choice; do not use for schema-only modeling or deployment topology planning.
14bash-style-guide
Style, review, and refactoring standards for Bash shell scripting. Trigger when `.sh` files, files with `#!/usr/bin/env bash` or `#!/bin/bash`, or CI workflow blocks with `shell: bash` are created, modified, or reviewed and Bash-specific quality controls (quoting safety, error handling, portability, readability) must be enforced. Do not use for generic POSIX `sh`, PowerShell, or language-specific application style rules. In multi-language pull requests, run together with other applicable `*-style-guide` skills.
11architecture-clean-architecture
Clean Architecture workflow for enforcing dependency direction, stable domain boundaries, and use-case-centered application design. Use when teams must separate business rules from frameworks and delivery mechanisms; do not use for isolated module cleanup without boundary implications.
11powershell-style-guide
Style, review, and refactoring standards for PowerShell scripting. Trigger when `.ps1`, `.psm1`, `.psd1` files, or CI workflow blocks with `shell: pwsh` or `shell: powershell` are created, modified, or reviewed and PowerShell-specific quality controls (error handling, parameter validation, readability, operational safety) must be enforced. Do not use for Bash, generic POSIX `sh`, or language-specific application style rules. In multi-language pull requests, run together with other applicable `*-style-guide` skills.
10github-codeowners-management
Govern CODEOWNERS rules so review routing reflects real ownership and risk boundaries on GitHub. Use when repository ownership mapping or mandatory reviewer rules must be defined, updated, or audited; do not use for non-GitHub runtime architecture or data-layer design.
9security-authentication
Security workflow for authentication architecture, credential lifecycle, and session/token assurance. Use when login, identity proofing, MFA, or session security decisions are required; do not use for authorization policy design or non-security quality tuning.
9