Security & Testing Habilidades de Claude

AI Code Reviewer

Performs deep, multi-model code analysis and security scanning using external AI engines to identify vulnerabilities and architectural improvements.

Configuration & Secrets Reviewer

Audits application configurations and secret management to ensure production safety, environment parity, and security compliance.

Regression Test Tracker

Automates the identification, execution, and analysis of regression tests to prevent breaking changes and ensure code stability.

Threat Model Security Testing

Generates automated security test cases and attack scenarios directly from threat models to verify controls and prevent regressions.

Threat Model Initializer

Automates the creation of comprehensive threat models by analyzing architecture documentation and system components.

Accessibility Test Scanner

Conducts comprehensive WCAG accessibility audits and ARIA validations to ensure web applications are inclusive and compliant.

Code Smell Detector & Refactor Guide

Analyzes source code to identify anti-patterns, complexity issues, and technical debt while providing senior-level refactoring advice.

Threat Modeling & Risk Analysis

Analyzes system threats using STRIDE or PASTA frameworks to generate comprehensive threat catalogs, attack trees, and risk registers.

Test Coverage Analyzer

Analyzes code coverage metrics to identify untested code paths and generate detailed quality reports.

Code Review Expert

Analyzes, debugs, and refactors code across multiple languages to improve security, performance, and maintainability.

Security Control Verifier

Verifies the implementation of security controls within your codebase against documented threat models to identify gaps and ensure compliance.

Verified Completion Guard

Enforces a strict evidence-first protocol by requiring verified command outputs before any claims of task completion or success.

Security Risk Report Generator

Generates comprehensive, prioritized security risk reports and executive summaries from threat model data.

Multi-Dimensional Skill Reviewer

Conducts comprehensive quality assurance reviews of Claude Code skills using standardized rubrics and automated validation.

Async REPL Protocol

Standardizes asynchronous code execution and tool interactions within the Agentica REPL testing harness.

Codex Auth Manager

Simplifies OpenAI Codex CLI authentication using OAuth, API keys, and multi-account configurations.

Multi-AI Testing

Implements test-driven development workflows with independent verification to ensure high-quality code and comprehensive test coverage.

XSS Vulnerability Scanner

Scans web applications for Cross-Site Scripting vulnerabilities and provides context-aware remediation guidance.

API Testing with Playwright

Automates REST and GraphQL API validation using Playwright's native testing capabilities and implementation patterns.

Review Workflow

Orchestrates a comprehensive three-step quality assurance process including validation, multi-dimensional scoring, and functional testing.

Bedrock Automated Reasoning

Mathematically verifies AI-generated responses against formal policy rules to ensure 99% compliance accuracy in high-stakes domains.

Contract Fixtures Generator

Generates valid and invalid JSON test fixtures for Command and Decision DTOs based on current contract schemas.

Amazon Bedrock AgentCore Policy

Defines and enforces deterministic security boundaries for Amazon Bedrock agents using natural language and Cedar policies.

Mini App Testing Workflow

Automates comprehensive testing for mini-apps by generating functional test cases, UI checks, and quality control reports.

API Testing with Playwright

Automates REST and GraphQL API testing, response validation, and endpoint mocking using Playwright's native capabilities.

Maestro Wiring Verification

Ensures infrastructure components are properly integrated and reachable within the execution path to eliminate dead code.

Automated TDD Runner

Automates the complete Red-Green-Refactor cycle to ensure test-driven development standards for every feature.

Bug Investigation & Root Cause Analysis

Conducts systematic debugging and root cause analysis to identify, isolate, and resolve software defects using a structured framework.

Red Team & Bug Bounty Methodology

Automates professional reconnaissance and vulnerability discovery workflows using industry-standard red teaming tools and methodologies.

Prompt Injection Security Defense

Protects AI applications against prompt injection attacks by managing security patterns and automating regression testing.