Maven plugins

Run slash commands to perform security audits: scan dependencies for vulnerabilities and risks, review auth configs and inputs, generate severity-prioritized reports with remediations and code fixes, add secure authentication systems with MFA and RBAC, and automatically harden app configurations across encryption, headers, and infra.

Run a phased performance investigation workflow that establishes baselines, maps code paths, profiles hotspots with flame graphs, generates and tests hypotheses via benchmarks, logs evidence, and synthesizes recommendations with decisions for Node/JS, Python, Rust, Go, Java projects.

Build, configure, and troubleshoot GraalVM Native Image applications using native-image CLI, Maven, or Gradle Native Build Tools, including reachability metadata and build/run-time issue diagnosis.

Automate Java/Spring Boot development workflows: scaffold production-ready Spring Boot 4.x apps with REST APIs, JPA entities, security, tests, Modulith, Thymeleaf, and Docker Compose; add JSpecify for nullability checks in Maven/Gradle projects; review recent code changes for bugs, security, architecture, and best practices.

Automate end-to-end Testany testing workflows: decompose scenarios into cases with Python/Java/Playwright/Gradle/Maven scripts and ZIP packages, register and manage cases/pipelines, configure Jenkins/GitHub Actions triggers and schedules, monitor executions, debug failures via log analysis, and organize workspaces/teams with permissions.

Query, transform, and convert structured data files (JSON, YAML, TOML, XML, CSV, HCL, INI) using dasel v3 selectors. Explore unknown schemas, batch-modify config files, and audit enterprise Java XML formats (Maven POM, Spring beans, Hibernate HBM, Tomcat web.xml, InstallAnywhere).

Bootstrap Spring Boot projects from scratch with Maven/Gradle, generate full CRUD REST APIs with entities/services/tests, configure Redis caching, JWT/OAuth security, Resilience4J patterns, JPA optimizations, OpenAPI docs, logging best practices, and Spring AI integrations. Review code via skills/agent, scan routes, and start apps locally.

Review Spring Boot codebases using skill detection and parallel agents for DDD patterns, security, testing, observability, and Modulith modules. Verify upgrades to Spring Boot 4 with multi-phase analysis producing severity-categorized migration checklists and remediation steps. Implement data layers, REST APIs, and configurations via guided skills.

Enforces a structured development workflow with subagent-driven task execution, code review, and testing. Provides skills for plan decomposition, TDD, root-cause debugging, dead code removal, coverage analysis, and persistent rule evolution.

Orchestrate full-cycle feature development via 6-phase SDLC pipelines with plan persistence and verification, conduct cached deep technical research across projects, systematically debug issues, verify code changes with git diffs and quality gates, and delegate complex reasoning or architecture to specialized agents.

Scaffold production-ready projects from configurable templates (Cookiecutter, Copier, Maven Archetype, Harness) with automatic project detection and CI/CD integration. Also generate API clients from OpenAPI specs, database migrations from models, and test suites from code through a unified template interface.

Enforce Maven POM dependency ordering by scope and groupId hierarchy, auto-fix OpenRewrite recipe test failures from import ordering and validations, apply best practices for recipe authoring, check project dependencies, and resolve Liquibase lock errors in Java projects.

Set up bpmn-to-code plugins in Gradle or Maven Java/Kotlin projects to generate type-safe Process API constants from BPMN diagrams for Camunda 7, Zeebe, or Operation. Migrate hardcoded BPMN string literals to these constants for type-safe refactoring.

Web scraping and data extraction across websites using ScraperAPI's MCP, SDK, and CLI interfaces, including async jobs, crawlers, structured data, and integrations with Python, Node.js, Java, PHP, Ruby, and n8n.

Develop and operate Camunda 8 automations end-to-end: author BPMN processes, DMN decisions, FEEL expressions, and Camunda Forms; build custom connectors and job workers; deploy resources to clusters, manage live process instances, and validate with Process Test coverage reports — all with CLI support for installation, configuration, and vector-search documentation lookup.

Supercharge Java development with automated code review, architecture validation, and project health scoring — plus ADR management, Javadoc generation, design pattern detection, and Java version migration guidance for Spring Boot and Maven/Gradle projects.

Develop Alfresco/Hyland ECM extensions with AI-assisted scaffolding, validation, and diagnostics. Generate Java/Spring Boot code for content models, REST APIs, workflows, and UI components; validate XML configs, Docker Compose, and BPMN; analyze deprecated APIs and produce migration plans.

Enforces disciplined TDD (Red-Green-Refactor) cycles with language-agnostic code quality reviews, architecture guidance, and automated agent teams that decompose features, write tests, and refactor code.

Run comprehensive Java quality audits covering OWASP security, performance (N+1, memory, threading), and JUnit 5/Mockito/Testcontainers test generation, with automated git workflow guards for dependency and policy enforcement.

Scans Maven and Gradle build files for outdated dependencies, fetches latest versions and release notes, and manages upgrades with build verification

Run end-to-end AI-driven feature development workflows in Claude Code: bootstrap ideas into PRDs, research codebases, draft plans and tasklists, implement iteratively via git edits and bounded scopes, review changes, execute QA tests across Python/pytest/npm/go/maven projects, with safety hooks gating prompts/files/executions.