Security & Testing Habilidades de Claude

Authentication Patterns

Implements industry-standard authentication and authorization flows including JWT, OAuth2 with PKCE, and RBAC.

Security Hardening

Hardens application security by implementing best practices for input validation, authentication, and vulnerability prevention.

TDD Mastery

Implements a disciplined Test-Driven Development workflow using the Red-Green-Refactor cycle across multiple programming languages.

Unsafe Rust & FFI Checker

Audits unsafe Rust code for soundness, memory safety, and proper FFI implementation patterns.

Rust Anti-Pattern Reviewer

Identifies non-idiomatic Rust code and suggests high-performance refactoring patterns to improve safety and maintainability.

Best Practices & Web Quality

Implements modern web development standards for security, browser compatibility, and code quality based on Lighthouse audits.

Testing Guidelines for Claude Code

Establishes standardized testing principles for building robust software through integration-focused strategies and mandatory regression coverage.

Code Anti-Pattern Guardrails

Enforces cross-language best practices and prevents common architectural errors in Python, Rust, and TypeScript.

ActivityPub WordPress Testing

Streamlines the creation and debugging of PHPUnit and Playwright tests for WordPress ActivityPub implementations.

Write Tests (TDD)

Automatically generates comprehensive test coverage for local code changes using specialized AI agents.

Prompt TDD & Subagent Testing

Applies the RED-GREEN-REFACTOR TDD cycle to prompt engineering using isolated subagents for reliable behavior verification.

Agent Skill Stress Tester

Applies a rigorous Red-Green-Refactor cycle to verify and bulletproof AI agent skills against rationalization and rule-breaking under pressure.

Local Change Code Reviewer

Performs a multi-agent, comprehensive audit of uncommitted local changes to identify bugs, security risks, and quality improvements before you commit.

Judge Sub-Agent

Evaluates and scores AI-generated work using a specialized, context-isolated sub-agent to ensure high-quality results.

Root Cause Tracing

Systematically identifies the original source of bugs and invalid data by tracing errors backward through the call stack.

Automated TDD Test Fixer

Systematically repairs failing unit and integration tests after code changes using intelligent agent orchestration.

Security Auditor & DevSecOps Expert

Performs comprehensive security audits, vulnerability assessments, and DevSecOps integrations to ensure application resilience and regulatory compliance.

WCAG Accessibility Audit Patterns

Conducts comprehensive WCAG 2.2 accessibility audits and provides actionable remediation strategies for web content.

TDD Red Phase Workflow

Generates comprehensive failing tests to define expected behavior and edge cases during the initial TDD red phase.

Vitest Testing

Simplifies unit and integration testing for Vite-based projects by providing specialized configuration, Jest-compatible API guidance, and mocking patterns.

Flow-Next Epic Review

Verifies that completed epic tasks align with original specification requirements using automated review gates and autonomous fix loops.

Jadx Android Decompiler

Decompiles Android APK files into readable Java source code to facilitate security audits and application analysis.

Apktool Android Reverse Engineering

Automates the unpacking, resource extraction, and disassembly of Android APK files for security analysis and vulnerability discovery.

Nmap Network Reconnaissance

Performs professional network reconnaissance and port scanning using an optimized two-phase strategy for comprehensive service detection.

IoT UART Console (picocom)

Interacts with embedded device UART consoles for security auditing, vulnerability discovery, and gaining root access.

IoT Network Traffic Analyzer

Analyzes IoT network traffic to detect specialized protocols and identify security vulnerabilities in real-time or from packet captures.

IoT WS-Discovery Scanner

Discovers and enumerates ONVIF cameras and IoT devices using the WS-Discovery protocol for network security assessments.

Chipsec Firmware Analysis

Performs static security analysis of UEFI and BIOS firmware dumps to detect malware and audit system integrity.

ONVIF Security Scanner

Scans ONVIF-enabled IP cameras and IoT devices for authentication vulnerabilities and weak credentials.

Ffind Firmware & Filesystem Analyzer

Analyzes firmware files, detects file types, and extracts embedded filesystems for security research and IoT pentesting.