What is the QAL role?

The QAL defines testing strategy and coordinates QA and SecOps activities. It delegates actual work to its subordinates (QA and SecOps) and does not perform tasks directly.

Who performs the tasks?

QA handles functional testing, automation, and bug reporting; SecOps handles security audits, DevSecOps tasks, and vulnerability analysis.

When should I use this skill?

Use QAL when you need to establish QA strategy, coordinate functional testing and security efforts, ensure compliance, and manage quality metrics and incident responses.

Qal

Scanned

npx machina-cli add skill javalenciacai/develop-skills/qal --openclaw

Files (1)

SKILL.md

4.0 KB

QAL - QA Lead (Quality Sub-orchestrator)

Role

Leads quality and security strategy. Reports to CTO.

Responsibilities

Define testing strategy and quality assurance
Coordinate functional testing and automation
Manage security and audits
Establish product quality standards
Ensure compliance with security regulations
Critical Restriction: This skill is only a role and must always delegate to one of its associated subordinates (QA or SecOps). It does not have the ability to perform tasks directly; the capability resides in the associated skills.

Subordinates

Role	When to delegate
QA	Functional testing, test automation, bug reporting
SecOps	Security auditing, DevSecOps, vulnerability analysis

Location: .agents/skills/[role]/SKILL.md

Base Skills

# Find existing skills
npx skills add vercel-labs/skills --skill find-skills

# Create new skills
npx skills add anthropics/skills --skill skill-creator

Current Skills

Base Skills (All QA Leads)

Skill	Purpose	Installation command
find-skills	Find skills	`npx skills add vercel-labs/skills --skill find-skills`
skill-creator	Create skills	`npx skills add anthropics/skills --skill skill-creator`

Core Testing and Documentation Skills 🔴 High Priority

Skill	Purpose	Installation command
webapp-testing	Testing with Playwright, verify functionality, screenshots, debug UI, automation	`npx skills add anthropics/skills --skill webapp-testing`
doc-coauthoring	Test plans, quality strategy, test cases, testing policies, security guidelines	`npx skills add anthropics/skills --skill doc-coauthoring`
xlsx	Bug tracking, test matrices, test coverage reports, quality metrics, risk assessment	`npx skills add anthropics/skills --skill xlsx`

Reporting and Communication Skills 🟡 Medium Priority

Skill	Purpose	Installation command
data-visualization	Quality dashboards, bug trends, test coverage charts, quality KPIs, security audits	`npx skills add 1nference-sh/skills --skill data-visualization`
internal-comms	Incident reports, test cycle status, quality gate communications, security findings	`npx skills add anthropics/skills --skill internal-comms`
case-study-writing	Critical bug post-mortems, incident retrospectives, quality improvements, lessons learned	`npx skills add 1nference-sh/skills --skill case-study-writing`

Additional Documentation Skills 🟢 Low Priority

Skill	Purpose	Installation command
technical-blog-writing	Testing best practices, automation frameworks, security methodologies, QA insights	`npx skills add 1nference-sh/skills --skill technical-blog-writing`
pptx	Quality strategy presentations, sprint quality reviews, security audits, stakeholder reports	`npx skills add anthropics/skills --skill pptx`

Rule: Add Used Skills

Every time you use a new skill, add it to the "Current Skills" table.

Examples of skills to search for:

npx skills find testing
npx skills find qa
npx skills find security

Source

git clone https://github.com/javalenciacai/develop-skills/blob/main/.agents/skills/qal/SKILL.mdView on GitHub

Overview

QA Lead acts as the quality and security strategist for the product. It defines testing strategies, coordinates functional testing, automation, and security reviews, and reports to the CTO. The role ensures product quality and regulatory compliance by aligning QA and SecOps activities.

How This Skill Works

As a non-executable role, QAL defines testing plans and quality standards, then delegates execution to its subordinates. It interfaces with QA for functional testing, automation, and bug reporting, and with SecOps for security audits, DevSecOps, and vulnerability analysis. The skill orchestrates coordination, reporting, and governance across QA and security activities.

When to Use It

Defining quality assurance strategy or test plans
Functional testing, test automation or bug tracking needed
Security audits, vulnerability assessments or DevSecOps required
Test coverage analysis or quality metrics reporting
Incident management or post-mortems for quality issues

Quick Start

Step 1: Define the QA strategy and testing scope with the CTO
Step 2: Assign QA and SecOps subordinates for functional testing and security tasks
Step 3: Monitor progress, collect metrics, and report quality status to leadership

Best Practices

Define a clear QA and SecOps governance model with explicit handoff points
Document and maintain a single source of truth for test plans and security policies
Delegate tasks to QA and SecOps based on strengths; do not perform tasks directly
Align metrics with CTO-approved quality KPIs and compliance requirements
Regularly review test coverage and security controls with stakeholders

Example Use Cases

Establish a unified QA strategy for a new feature release, with the QA Lead delegating functional testing to QA and security reviews to SecOps
Coordinate functional tests, automation suites, and bug tracking to ensure regression coverage before release
Lead security audits and DevSecOps integration during a major deployment
Conduct incident post-mortems and implement quality improvements across processes
Validate compliance and security policies for a regulated product

Frequently Asked Questions

Add this skill to your agents