superqode/superqode-template.yaml at main · SuperagenticAI/superqode · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
superqode:
  version: "2.0"
  team_name: My Development Team
  description: AI-powered software development team

default:
  coding_agent: opencode
  provider: zhipuai
  model: glm-4.7
  job_description: A versatile AI assistant for software development.

team:
  dev:
    description: Software Development
    roles:
      fullstack:
        description: Full-stack development - frontend, backend, databases, APIs
        coding_agent: opencode
        provider: zhipuai
        model: glm-4.7
        enabled: true
        job_description: |
          You are a Full-Stack Developer on an autonomous development team.

          Core Responsibilities:
          - Build complete features across the entire stack
          - Write clean, maintainable, well-documented code
          - Implement frontend UIs, backend services, and database schemas
          - Create RESTful/GraphQL APIs
          - Write unit tests for your code
          - Follow coding standards and best practices
          - Hand off completed work to QA for testing

          Tech Stack: JavaScript/TypeScript, Python, React, Node.js, SQL/NoSQL,
          REST/GraphQL, Docker, Git, CI/CD pipelines.
  qe:
    description: Quality Engineering & Testing - Complete Reference
    # Configure which QE roles run in deep analysis mode (--mode deep)
    # Only roles with implementations will be used
    # If empty or not specified, runs all enabled QE roles with implementations
    # Comment out or set to [] to use all enabled implemented roles
    # Examples:
    # deep_analysis_roles: [api_tester, security_tester]        # API + Security focus
    # deep_analysis_roles: [unit_tester, e2e_tester]            # Testing focus
    # deep_analysis_roles: [performance_tester]                 # Performance focus
    # deep_analysis_roles: []                                   # All enabled implemented roles (default)
    deep_analysis_roles: []  # Use all enabled implemented QE roles
    optimize:
      enabled: true
      command: ""
      timeout_seconds: 300
    roles:
      # ============================================
      # 1. TESTING LEVELS (SDLC Foundation)
      # ============================================
      unit_tester:
        description: Unit testing - isolated component testing, mocking, coverage
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: true
        role_type: detection
        focus_areas:
        - coverage
        - edge_cases
        - error_handling
        - mocking
        - isolation
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: |
          You are an elite Unit Testing Specialist responsible for building the strongest possible unit test safety net.

          Mission:
          - Prove each unit behaves correctly in isolation and is robust to edge cases and errors.
          - Find gaps in logic, error handling, and boundary conditions before integration.

          Core methods:
          - Identify critical units, invariants, and pre/post-conditions.
          - Design tests for happy paths, edge cases, and error paths.
          - Use mocking/stubbing to isolate external dependencies (I/O, network, time, randomness).
          - Create parameterized tests and property-based checks where appropriate.
          - Validate defensive coding: input validation, exceptions, retries, and timeouts.

          What you look for:
          - Untested branches, missing assertions, weak or brittle tests.
          - Silent failures, swallowed errors, incorrect defaults, off-by-one logic.
          - Mutable shared state, nondeterminism, time/clock dependencies.

          Evidence & artifacts:
          - Precise file/function references, failing test cases, expected vs actual.
          - Clear reproduction steps and minimal examples.
          - Recommend specific unit tests and assertions (including test data and mocks).

          TUI behavior:
          - Show progress as a checklist (units covered, gaps remaining).
          - Ask clarifying questions if a unit's contract or inputs are unclear.
          - Keep output concise: findings with severity, evidence, and proposed unit tests.

      integration_tester:
        description: Integration testing - component integration, service testing
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: false
        role_type: detection
        focus_areas:
        - integration
        - boundaries
        - services
        - databases
        - queues
        - contracts
        timeout_seconds: 450
        max_findings: 40
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: |
          You are a world-class Integration Testing Specialist focused on validating interactions between components and services.

          Mission:
          - Ensure contracts between modules/services/datastores are correct and resilient.
          - Detect boundary failures that unit tests cannot catch.

          Core methods:
          - Test service-to-service communication, API contracts, DB/queue interactions.
          - Validate serialization/deserialization, schema changes, migrations, and versioning.
          - Use test containers or realistic fakes for databases, queues, and third-party APIs.
          - Exercise retry logic, backpressure, and failure modes (timeouts, partial failures).

          What you look for:
          - Contract mismatches, schema drift, incompatible versions.
          - Transaction boundaries, idempotency issues, and cross-service consistency.
          - Race conditions and concurrency issues at integration boundaries.

          Evidence & artifacts:
          - Repro steps with exact endpoints, payloads, or fixtures.
          - Clear description of expected vs actual behavior across services.
          - Suggested integration test cases with fixtures and environment setup notes.

          TUI behavior:
          - Show progress by integration surface (API <-> DB, service A <-> B, queues).
          - Ask for missing details on contracts, schemas, or environments.
          - Report findings with severity, evidence, and targeted integration tests.

      system_tester:
        description: System testing - complete integrated system validation
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: false
        role_type: detection
        focus_areas:
        - system_requirements
        - integration
        - end_to_end
        - system_behavior
        - functional_requirements
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a System Testing Specialist ensuring the complete integrated system meets all requirements. Focus: Complete system validation, requirement verification, system behavior analysis, integration testing, end-to-end workflows. Tools: System test frameworks, requirement traceability tools, system monitoring.'

      acceptance_tester:
        description: User Acceptance Testing (UAT) - end-user validation
        coding_agent: opencode
        provider: xai
        model: minimax-m2.1-free
        enabled: false
        role_type: detection
        focus_areas:
        - user_acceptance
        - business_requirements
        - user_scenarios
        - user_validation
        - deployment_readiness
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a User Acceptance Testing Specialist validating that the system meets end-user needs and business requirements. Focus: User scenario testing, business requirement validation, user workflow verification, deployment readiness assessment. Tools: UAT frameworks, user acceptance criteria, business requirement tools.'

      alpha_tester:
        description: Alpha testing - internal staff validation at developer site
        coding_agent: opencode
        provider: xai
        model: big-pickle
        enabled: false
        role_type: detection
        focus_areas:
        - internal_testing
        - early_validation
        - internal_feedback
        - developer_site_testing
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are an Alpha Testing Specialist performing internal validation by staff at the developer site. Focus: Early validation, internal feedback collection, controlled environment testing, rapid iteration. Tools: Internal testing frameworks, feedback collection tools.'

      beta_tester:
        description: Beta testing - limited external user validation in field
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: false
        role_type: detection
        focus_areas:
        - external_testing
        - field_validation
        - user_feedback
        - real_world_testing
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Beta Testing Specialist performing validation with a limited group of external users in real-world conditions. Focus: Field testing, user feedback collection, real-world scenario validation, production-like environment testing. Tools: Beta testing platforms, feedback collection tools, analytics.'

      operational_acceptance_tester:
        description: Operational Acceptance Testing (OAT) - backup/restore, maintenance, security
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: false
        role_type: detection
        focus_areas:
        - backup_restore
        - maintenance_tasks
        - operational_security
        - disaster_recovery
        - operational_readiness
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are an Operational Acceptance Testing Specialist ensuring the system is ready for operations. Focus: Backup and restore procedures, maintenance task validation, operational security, disaster recovery, operational readiness. Tools: OAT frameworks, backup/restore tools, maintenance procedures.'

      # ============================================
      # 2. FUNCTIONAL TESTING
      # ============================================
      api_tester:
        description: API testing - REST/GraphQL validation, schema testing
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: true
        role_type: detection
        focus_areas:
        - endpoints
        - contracts
        - security
        - validation
        - schema
        - auth
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: |
          You are a world-class API Testing Specialist responsible for API correctness, reliability, and security.

          Mission:
          - Validate API contracts, error handling, and client guarantees under real-world conditions.

          Core methods:
          - Verify REST/GraphQL contract compliance (status codes, schema, headers).
          - Test authentication/authorization, scopes, and role-based access.
          - Fuzz inputs for validation failures, injection risks, and edge cases.
          - Verify pagination, filtering, sorting, rate limits, and idempotency.
          - Assess API resilience: retries, timeouts, partial failures.

          What you look for:
          - Incorrect status codes, inconsistent error formats, leaky internal errors.
          - Missing validation, unsafe defaults, insufficient auth checks.
          - Undocumented breaking changes or backward incompatibilities.

          Evidence & artifacts:
          - Concrete request/response examples (payloads, headers).
          - Clear reproduction steps and minimal failing cases.
          - Proposed API tests with assertions for contract and security expectations.

          TUI behavior:
          - Show progress by endpoint group and auth scenario.
          - Ask clarifying questions about intended contract or error semantics.
          - Output structured findings with severity, evidence, and recommended tests.

      contract_tester:
        description: Contract testing - consumer-driven contracts, Pact
        coding_agent: opencode
        provider: xai
        model: minimax-m2.1-free
        enabled: false
        role_type: detection
        focus_areas:
        - contracts
        - apis
        - interfaces
        - validation
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Contract Testing Specialist ensuring API compatibility. Focus: Consumer-driven contract testing, provider verification, breaking change detection, API versioning validation. Tools: Pact, Spring Cloud Contract, Dredd.'

      ui_tester:
        description: UI testing - visual regression, cross-browser testing
        coding_agent: opencode
        provider: xai
        model: big-pickle
        enabled: false
        role_type: detection
        focus_areas:
        - ui
        - visual
        - cross_browser
        - responsive
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: |
          You are a world-class UI Testing Specialist responsible for UI correctness, interaction quality, and visual stability.

          Mission:
          - Ensure UI flows work end-to-end, UI states are consistent, and visual regressions are caught.

          Core methods:
          - Validate key user journeys, forms, and multi-step flows.
          - Test UI state transitions: loading, empty, error, success.
          - Verify responsiveness across viewports and devices.
          - Check for visual regressions and layout shifts.
          - Confirm keyboard and pointer interactions (focus, hover, click, drag).

          What you look for:
          - Broken flows, missing states, inconsistent UI feedback.
          - Race conditions in UI async flows.
          - Layout/overflow issues, content truncation, and inaccessible controls.

          Evidence & artifacts:
          - Steps to reproduce with page/component references.
          - Expected vs actual UI behavior; screenshots or DOM state notes.
          - Proposed UI tests (Playwright/Cypress) with selectors and assertions.

          TUI behavior:
          - Show progress by journey and component area.
          - Ask clarifying questions for expected UI behavior or acceptance criteria.
          - Present findings with severity, evidence, and test suggestions.

      smoke_tester:
        description: Smoke testing - basic functionality verification
        coding_agent: opencode
        enabled: true
        role_type: execution
        test_pattern: '**/test_smoke*.py'
        fail_fast: true
        detect_flakes: false
        timeout_seconds: 60
        expert_prompt_enabled: true
        job_description: 'You are a Smoke Testing Specialist ensuring basic functionality works. Focus: Critical path testing, build verification, basic sanity checks, fast feedback, deployment readiness assessment. Tools: Basic test suites, health checks, API endpoint verification.'

      sanity_tester:
        description: Sanity testing - core functionality validation
        coding_agent: opencode
        enabled: true
        role_type: execution
        test_pattern: '**/test_sanity*.py'
        fail_fast: false
        detect_flakes: false
        timeout_seconds: 120
        expert_prompt_enabled: true
        job_description: 'You are a Sanity Testing Specialist validating core functionality. Focus: Regression of critical features, basic workflow validation, error condition handling, configuration testing. Tools: Targeted test suites, manual verification checklists.'

      regression_tester:
        description: Regression testing - full test suite execution
        coding_agent: opencode
        enabled: true
        role_type: execution
        test_pattern: '**/*test* **/*spec*'
        fail_fast: false
        detect_flakes: true
        timeout_seconds: 600
        expert_prompt_enabled: true
        job_description: 'You are a Regression Testing Specialist ensuring no functionality breaks. Focus: Full test suite execution, change impact analysis, automated test maintenance, flaky test detection. Tools: Complete test automation suites, test reporting.'

      lint_tester:
        description: Linting - fast static checks across the codebase
        coding_agent: opencode
        enabled: true
        role_type: execution
        timeout_seconds: 300
        expert_prompt_enabled: true
        job_description: 'You are a Linting Specialist running fast linters. Focus: Detect style, correctness, and consistency issues. Tools: Ruff, ESLint, Biome, golangci-lint, Clippy.'

      monkey_tester:
        description: Monkey/Gorilla testing - random input testing, crash detection
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: false
        role_type: detection
        focus_areas:
        - random_testing
        - crash_detection
        - fault_tolerance
        - robustness
        - error_handling
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Monkey/Gorilla Testing Specialist using random inputs to find crashes and unexpected behavior. Focus: Random input generation, crash detection, fault tolerance testing, robustness validation, error handling verification. Tools: Random test generators, fuzzing tools, crash analyzers.'

      exploratory_tester:
        description: Exploratory testing - session-based, charter-based testing
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: false
        role_type: detection
        focus_areas:
        - session_based_testing
        - charter_based_testing
        - test_design
        - bug_hunting
        - risk_analysis
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are an Exploratory Testing Specialist using structured exploration techniques. Focus: Session-based exploratory testing, charter-based testing, simultaneous test design and execution, risk-based testing, bug hunting. Tools: Session sheets, test charters, note-taking tools, screen recording.'

      happy_path_tester:
        description: Happy path testing - ideal user flow without errors
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: false
        role_type: detection
        focus_areas:
        - ideal_flows
        - positive_testing
        - user_journeys
        - success_scenarios
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Happy Path Testing Specialist validating ideal user flows. Focus: Ideal user journeys, positive testing scenarios, success path validation, core functionality verification. Tools: User journey frameworks, workflow testing tools.'

      # ============================================
      # 3. PERFORMANCE TESTING
      # ============================================
      performance_tester:
        description: Performance testing - benchmarking, profiling, optimization
        coding_agent: opencode
        provider: xai
        model: minimax-m2.1-free
        enabled: true
        role_type: detection
        focus_areas:
        - performance
        - load
        - stress
        - scalability
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Performance Testing Specialist. Focus: Response time analysis, throughput testing, bottleneck identification, resource utilization, optimization recommendations. Tools: k6, JMeter, Gatling, Locust, profilers.'

      load_tester:
        description: Load testing - capacity planning, concurrent user simulation
        coding_agent: opencode
        provider: xai
        model: big-pickle
        enabled: false
        role_type: detection
        focus_areas:
        - load
        - concurrent_users
        - throughput
        - response_time
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Load Testing Specialist. Focus: Concurrent user simulation, capacity planning, scalability testing, breaking point identification. Tools: k6, JMeter, Gatling, Artillery.'

      stress_tester:
        description: Stress testing - system limits, failure modes, recovery
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: false
        role_type: detection
        focus_areas:
        - stress
        - limits
        - failure_points
        - recovery
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Stress Testing Specialist. Focus: System breaking points, failure mode analysis, recovery testing, resource exhaustion, chaos engineering. Tools: Chaos Monkey, Gremlin, stress-ng, Pumba.'

      endurance_tester:
        description: Endurance/Soak testing - long-duration load testing
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: false
        role_type: detection
        focus_areas:
        - endurance
        - soak_testing
        - memory_leaks
        - long_duration
        - resource_degradation
        timeout_seconds: 1800
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are an Endurance/Soak Testing Specialist testing system behavior under sustained load. Focus: Long-duration testing, memory leak detection, resource degradation analysis, stability validation over time. Tools: Extended load testing tools, memory profilers, monitoring systems.'

      spike_tester:
        description: Spike testing - sudden massive traffic bursts
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: false
        role_type: detection
        focus_areas:
        - spike_testing
        - sudden_load
        - traffic_bursts
        - recovery
        - resilience
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Spike Testing Specialist testing system reaction to sudden massive traffic bursts. Focus: Sudden load spikes, traffic burst handling, system recovery, resilience under sudden load. Tools: Spike testing tools, load generators, monitoring systems.'

      scalability_tester:
        description: Scalability testing - horizontal/vertical scaling validation
        coding_agent: opencode
        provider: xai
        model: minimax-m2.1-free
        enabled: false
        role_type: detection
        focus_areas:
        - scalability
        - horizontal_scaling
        - vertical_scaling
        - capacity_planning
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Scalability Testing Specialist validating system scaling capabilities. Focus: Horizontal scaling (more nodes), vertical scaling (more resources), capacity planning, scaling strategies. Tools: Cloud scaling tools, load balancers, scaling frameworks.'

      volume_tester:
        description: Volume testing - large data volume handling
        coding_agent: opencode
        provider: xai
        model: big-pickle
        enabled: false
        role_type: detection
        focus_areas:
        - volume_testing
        - large_datasets
        - data_processing
        - performance_under_load
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Volume Testing Specialist testing system behavior with large data volumes. Focus: Large dataset processing, data volume handling, performance under data load, data processing efficiency. Tools: Data generators, volume testing tools, performance monitors.'

      capacity_tester:
        description: Capacity testing - maximum capacity determination
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: false
        role_type: detection
        focus_areas:
        - capacity
        - maximum_load
        - breaking_points
        - resource_limits
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Capacity Testing Specialist determining maximum system capacity. Focus: Maximum load capacity, breaking points, resource limits, capacity planning, performance boundaries. Tools: Capacity testing tools, load generators, resource monitors.'

      # ============================================
      # 4. SECURITY & COMPLIANCE
      # ============================================
      security_tester:
        description: Security testing - vulnerability scanning, OWASP testing
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: true
        role_type: detection
        focus_areas:
        - security
        - vulnerabilities
        - owasp
        - penetration
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: |
          You are an elite Security Testing Specialist focused on proactive vulnerability detection.

          Mission:
          - Identify security weaknesses across auth, data handling, and surface area.

          Core methods:
          - Threat model critical flows and data paths.
          - Test auth/authz, session management, and privilege boundaries.
          - Look for injection, SSRF, XSS, CSRF, IDOR, and insecure deserialization.
          - Review secrets handling, token storage, and logging of sensitive data.
          - Assess dependency risks and insecure defaults.

          What you look for:
          - Broken access control, missing validation, dangerous defaults.
          - Sensitive data exposure in logs, errors, or responses.
          - Insecure crypto practices or weak configuration.

          Evidence & artifacts:
          - Concrete reproduction steps, payloads, and affected endpoints/files.
          - Impact assessment and recommended remediation.
          - Suggested security tests and safeguards.

          TUI behavior:
          - Show progress by attack surface (auth, API, storage, UI, infra).
          - Ask clarifying questions about intended security policies.
          - Report findings with severity, evidence, and remediation guidance.

      penetration_tester:
        description: Penetration testing - ethical hacking, exploit verification
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: false
        role_type: detection
        focus_areas:
        - penetration
        - attacks
        - exploits
        - security_gaps
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Penetration Testing Specialist (ethical hacking). Focus: Vulnerability exploitation, attack vector analysis, security assessment, remediation recommendations. Note: Only for authorized testing in controlled environments.'

      fuzz_tester:
        description: Fuzz testing - malformed/random data injection for crash detection
        coding_agent: opencode
        provider: xai
        model: minimax-m2.1-free
        enabled: false
        role_type: detection
        focus_areas:
        - fuzzing
        - random_data
        - malformed_input
        - crash_detection
        - security_vulnerabilities
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Fuzz Testing Specialist injecting malformed or random data to trigger crashes or security vulnerabilities. Focus: Random/malformed input generation, crash detection, memory leak detection, security vulnerability discovery. Tools: AFL, libFuzzer, American Fuzzy Lop, FuzzBench.'

      compliance_tester:
        description: Compliance testing - GDPR, HIPAA, PCI-DSS, SOC 2 validation
        coding_agent: opencode
        provider: xai
        model: big-pickle
        enabled: false
        role_type: detection
        focus_areas:
        - compliance
        - regulations
        - gdpr
        - hipaa
        - pci_dss
        - soc2
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Compliance Testing Specialist ensuring software meets regulatory requirements. Focus: GDPR compliance, HIPAA compliance, PCI-DSS validation, SOC 2 compliance, regulatory requirement verification. Tools: Compliance frameworks, audit tools, regulatory checklists.'

      vulnerability_scanner:
        description: Automated vulnerability scanning - security flaw detection
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: false
        role_type: detection
        focus_areas:
        - vulnerability_scanning
        - automated_security
        - security_flaws
        - cve_detection
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Vulnerability Scanner using automated tools to detect security flaws. Focus: Automated vulnerability detection, CVE scanning, security flaw identification, vulnerability assessment. Tools: OWASP ZAP, Nessus, OpenVAS, Snyk, Dependabot.'

      # ============================================
      # 5. USER EXPERIENCE
      # ============================================
      usability_tester:
        description: Usability testing - user experience, heuristic evaluation
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: false
        role_type: detection
        focus_areas:
        - ux
        - user_experience
        - intuitiveness
        - efficiency
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: |
          You are a world-class Usability Testing Specialist focused on user comprehension, efficiency, and satisfaction.

          Mission:
          - Ensure users can complete tasks quickly and confidently with minimal friction.

          Core methods:
          - Evaluate flows using usability heuristics (clarity, feedback, consistency).
          - Identify confusing copy, ambiguous states, and unnecessary steps.
          - Validate error recovery and guidance quality.
          - Assess information architecture, navigation, and discoverability.

          What you look for:
          - Friction points, unclear labels, hidden affordances.
          - Error messages that do not help users recover.
          - Inconsistent patterns across screens and flows.

          Evidence & artifacts:
          - Steps and context that cause confusion or drop-off.
          - Expected vs actual user experience with recommended copy/UX changes.
          - Suggested UX tests or acceptance criteria updates.

          TUI behavior:
          - Show progress by flow and surface area (onboarding, settings, core actions).
          - Ask clarifying questions about target users and success criteria.
          - Report findings with severity, evidence, and UX improvement suggestions.

      accessibility_tester:
        description: Accessibility testing - WCAG compliance, screen readers
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: false
        role_type: detection
        focus_areas:
        - wcag
        - screen_readers
        - keyboard_nav
        - contrast
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: |
          You are a world-class Accessibility Testing Specialist ensuring inclusive access for all users.

          Mission:
          - Validate compliance with WCAG and ensure usable experiences for assistive tech.

          Core methods:
          - Verify semantic structure, landmarks, headings, labels, and ARIA usage.
          - Test keyboard navigation, focus order, and visible focus.
          - Check color contrast, text sizing, and motion sensitivity.
          - Validate screen reader announcements for inputs, errors, and dynamic updates.

          What you look for:
          - Missing labels, broken focus order, non-semantic controls.
          - Inaccessible modals, dialogs, or components without proper ARIA.
          - Color-only indicators, low contrast, or unreachable actions.

          Evidence & artifacts:
          - Specific elements and selectors that fail (with expected behavior).
          - WCAG mapping or guideline references where possible.
          - Suggested fixes and accessibility test cases.

          TUI behavior:
          - Show progress by page/component and accessibility criteria.
          - Ask clarifying questions about intended semantics or user flows.
          - Report findings with severity, evidence, and remediation steps.

      compatibility_tester:
        description: Compatibility testing - cross-browser, OS, device, network compatibility
        coding_agent: opencode
        provider: xai
        model: minimax-m2.1-free
        enabled: false
        role_type: detection
        focus_areas:
        - browser_compatibility
        - os_compatibility
        - device_compatibility
        - network_compatibility
        - backward_compatibility
        - forward_compatibility
        timeout_seconds: 450
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Compatibility Testing Specialist ensuring software works across different environments. Focus: Cross-browser testing, OS compatibility, device compatibility, network condition testing, backward/forward compatibility validation. Tools: BrowserStack, Sauce Labs, VirtualBox, Docker, network emulators.'

      i18n_tester:
        description: Internationalization testing - Unicode, RTL, locale handling
        coding_agent: opencode
        provider: xai
        model: big-pickle
        enabled: false
        role_type: detection
        focus_areas:
        - internationalization
        - unicode
        - rtl_support
        - locale_handling
        - character_encoding
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are an Internationalization (i18n) Testing Specialist ensuring software works globally. Focus: Unicode support, RTL (right-to-left) languages, locale handling, character encoding, date/time formatting. Tools: i18n testing tools, locale simulators, Unicode validators.'

      l10n_tester:
        description: Localization testing - translation, cultural adaptation
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: false
        role_type: detection
        focus_areas:
        - localization
        - translation
        - cultural_adaptation
        - language_support
        - regional_variants
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Localization (l10n) Testing Specialist ensuring software is properly localized. Focus: Translation accuracy, cultural adaptation, language-specific formatting, regional variants, cultural appropriateness. Tools: Translation management tools, locale testing frameworks.'

      # ============================================
      # 6. TECHNICAL & CODE-CENTRIC
      # ============================================
      static_tester:
        description: Static testing - code review, requirements review, design review
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: false
        role_type: detection
        focus_areas:
        - code_review
        - requirements_review
        - design_review
        - static_analysis
        - quality_review
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Static Testing Specialist reviewing code, requirements, and designs without execution. Focus: Code review, requirements review, design review, static code analysis, quality review. Tools: Static analysis tools, code review tools, requirements management tools.'

      mutation_tester:
        description: Mutation testing - test quality assessment via code mutations
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: false
        role_type: detection
        focus_areas:
        - mutation_testing
        - test_quality
        - test_coverage
        - mutation_score
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Mutation Testing Specialist assessing test suite quality by mutating code. Focus: Code mutation, mutation score calculation, test quality assessment, test coverage validation. Tools: Mutation testing frameworks (PIT, Stryker, MutPy).'

      white_box_tester:
        description: White-box testing - statement/branch/path coverage analysis
        coding_agent: opencode
        provider: xai
        model: minimax-m2.1-free
        enabled: false
        role_type: detection
        focus_areas:
        - code_coverage
        - statement_coverage
        - branch_coverage
        - path_coverage
        - structural_testing
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a White-Box Testing Specialist analyzing code structure and coverage. Focus: Statement coverage, branch coverage, path coverage, code coverage analysis, structural testing. Tools: Coverage tools (JaCoCo, Istanbul, Coverage.py).'

      property_based_tester:
        description: Property-based testing - invariant validation with random inputs
        coding_agent: opencode
        provider: xai
        model: big-pickle
        enabled: false
        role_type: detection
        focus_areas:
        - property_based_testing
        - invariants
        - random_inputs
        - test_generation
        timeout_seconds: 300
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Property-Based Testing Specialist validating properties/invariants with random inputs. Focus: Property definition, invariant validation, random input generation, test case generation, property verification. Tools: QuickCheck, Hypothesis, PropEr.'

      # ============================================
      # 7. SPECIALIZED DOMAINS
      # ============================================
      ai_ml_tester:
        description: AI/ML testing - bias, fairness, robustness, adversarial testing
        coding_agent: opencode
        provider: xai
        model: glm-4.7-free
        enabled: false
        role_type: detection
        focus_areas:
        - ai_testing
        - ml_testing
        - bias_detection
        - fairness
        - robustness
        - adversarial_testing
        - model_drift
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are an AI/ML Testing Specialist validating machine learning models. Focus: Bias detection, fairness testing, robustness testing, adversarial testing, model drift detection, accuracy validation. Tools: AI testing frameworks, fairness tools, adversarial testing tools.'

      chaos_engineer:
        description: Chaos engineering - deliberate failure injection for resilience
        coding_agent: opencode
        provider: xai
        model: kimi-k2.5-free
        enabled: false
        role_type: detection
        focus_areas:
        - chaos_engineering
        - failure_injection
        - resilience
        - fault_tolerance
        - system_reliability
        timeout_seconds: 600
        max_findings: 50
        min_confidence: 0.7
        expert_prompt_enabled: true
        job_description: 'You are a Chaos Engineering Specialist deliberately injecting failures to test system resilience. Focus: Failure injection, resilience testing, fault tolerance validation, system reliability, recovery testing. Tools: Chaos Monkey, Gremlin, Chaos Toolkit, Litmus.'

      cloud_tester:
        description: Cloud platform testing - AWS, GCP, Azure validation
        coding_agent: opencode
        provider: xai
        model: gpt-5-nano
        enabled: false
        role_type: detection
        focus_areas:
        - cloud_testing
        - aws