gstack▌

Same testing methodology as `/qa`, but report-only. It is for bug finding without any code edits.

Cross-model benchmark skill for comparing Claude, GPT/Codex, and Gemini on the same prompt and optionally an LLM-judge quality pass.

Full QA loop that tests the product, fixes discovered issues, re-verifies the fixes, and can generate regression coverage. Supports multiple severity tiers.

Security-audit skill that combines application security, infrastructure review, CI/CD checks, supply-chain scanning, LLM security, OWASP framing, and STRIDE analysis.

Developer-experience audit that actually runs onboarding and documentation flows, measures time-to-happy-path, and compares reality against planning assumptions.

Self-updater for gstack installs, including vendored/global detection and release summary output.

Debugging workflow with an explicit rule: no fixes until the root cause is understood. The flow is investigate, analyze, hypothesize, then implement.

Code-review pass focused on the actual diff, aimed at risks that often survive CI such as SQL safety, trust boundaries, and structural regressions.

PDF generation skill for turning markdown documents into publication-style PDFs with proper layout, TOC, pagination, and print polish.

Live-site visual QA plus fixes. It looks for spacing, hierarchy, AI slop, consistency, and interaction issues and can iterate with before/after verification.