Security & Testing Habilidades de Claude

Tizen CVE Security Scanner

Identifies known vulnerabilities in Tizen application dependencies and kernel versions using the OpenCVE database and Samsung security updates.

Accessibility Auditor

Audits web and mobile applications for WCAG 2.2 AA compliance using automated tools, manual findings, and deep code analysis.

LibAFL Security Fuzzing

Implements advanced fuzzing campaigns using the LibAFL framework to identify software vulnerabilities and memory safety issues.

Testing Builder

Generates comprehensive unit, integration, and E2E test suites automatically while learning from your project's specific testing style.

Tizen Manifest Privilege Validator

Validates and audits tizen-manifest.xml privilege declarations to ensure security compliance and proper resource access.

Differential Security Review

Performs security-focused analysis of code diffs and pull requests leveraging Trail of Bits' industry-leading expertise.

Verification Before Completion

Enforces a strict evidence-first workflow by requiring fresh command output and verification before any task is marked as complete.

Requirement Validator

Validates pseudo-code requirements to identify missing logic, security gaps, and edge cases before implementation begins.

Neural Signal Verification & Threat Detection

Implements von Holst’s reafference theory to distinguish self-generated system actions from external anomalies through predictive signal matching.

Behavioral Verification & Reafference

Implements neuroscience-based reafference theory to distinguish self-generated AI actions from external anomalies and threats.

Rust Cargo Fuzz

Performs automated coverage-guided fuzz testing for Rust applications using the cargo-fuzz tool and libFuzzer engine.

Security Fix Review

Reviews security patches and bug fixes to ensure they are complete, correct, and free of unintended side effects.

CQ-AI Deterministic Security Scanner

Conducts deterministic, AI-enhanced security scans with ternary classification to ensure reproducible vulnerability detection across any environment.

Test-Driven Development Workflow

Guides the Red-Green-Refactor cycle to ensure high-quality, verified code through test-first development.

Deno Secure Sandboxes

Executes untrusted code in secure, isolated Linux microVMs for AI agents and multi-tenant applications.

Smack Policy Generator

Generates SMACK mandatory access control policy files to ensure process isolation and secure resource access for Tizen applications.

Codegen Refactor Specialist

Refactors codebases using a TDD approach to improve internal quality, performance, and race safety without altering external behavior.

Security Header Generator

Configures robust security HTTP headers and Content Security Policies to protect web applications from common vulnerabilities.

Dependency Vulnerability Scanner

Identifies, reports, and remediates security vulnerabilities in project dependencies across multiple programming languages.

Semgrep Static Analysis

Performs high-speed static analysis and security scanning to identify vulnerabilities and enforce custom code patterns.

Testing Framework Helper

Generates comprehensive, production-ready test suites for JavaScript, TypeScript, and Python using frameworks like Jest, Pytest, and Playwright.

Secret Detection Rule Optimizer

Standardizes the modification and performance benchmarking of secret detection rules to ensure high-speed, accurate scanning.

Signal Isolated Auth

Enforces maximal security isolation for Signal authentication using nested VM and container boundaries with colored operad constraints.

Smart Contract Generator

Generates secure, production-ready Solidity smart contracts using OpenZeppelin standards and industry best practices.

Polar Integration Validator

Validates and secures Polar.sh billing integrations by checking webhooks, signatures, and environment configurations.

Semgrep Rule Creator

Generates custom Semgrep rules to detect security vulnerabilities and logic bugs within source code.

Sandbox Security

Executes untrusted code and system commands in secure, isolated microVMs to protect the host environment.

Security Implementation Guide

Implements production-ready security patterns to protect web applications against common vulnerabilities like XSS, CSRF, and SQL injection.

Tribal Village Project Validator

Automates the standard local validation and testing suite for the Tribal Village Nim project.

SARIF Security Parsing

Parses and analyzes Static Analysis Results Interchange Format (SARIF) files to streamline security vulnerability management and tool integration.