Security & Testing Habilidades de Claude

Test Master

Ensures software reliability through comprehensive functional, performance, and security testing strategies and automation.

Systematic Debugging Framework

Implements a rigorous four-phase methodology to identify root causes and ensure reliable software fixes before proposing code changes.

Root Cause Tracing

Traces execution bugs backward through the call stack to identify and fix the original source of errors rather than just symptoms.

Systematic Debugging

Implements a rigorous four-phase framework to identify root causes and resolve complex bugs without guesswork.

Testing Anti-Patterns

Identifies and prevents common software testing pitfalls to ensure test suites verify real behavior rather than mock implementation.

Condition-Based Waiting

Eliminates flaky tests and race conditions by replacing arbitrary timeouts with intelligent state polling.

Skill Testing with Subagents

Applies Test-Driven Development (TDD) principles to AI process documentation to ensure skills resist rationalization under pressure.

Verification Before Completion

Enforces rigorous, evidence-based verification protocols before any task is claimed as complete or submitted for review.

Test-Driven Development (TDD) Superpowers

Enforces a strict Red-Green-Refactor cycle to ensure all code is verified by failing tests before implementation.

API Testing Mastery

Implements comprehensive API testing strategies, automation workflows, and Postman MCP integrations for reliable backend services.

Express API Testing Patterns

Implements comprehensive testing strategies for Express.js applications including unit, integration, and middleware tests.

Guardrails & Safety Instrumentation

Implements comprehensive input and output safety checks to secure AI agent interactions and protect sensitive data.

CTO Codebase Audit

Performs comprehensive, expert-level assessments of software architecture and code quality to identify technical risks and scaling opportunities.

HTML Injection Security Testing

Identifies and exploits HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

SQL Injection Security Testing

Conducts comprehensive SQL injection vulnerability assessments to identify, exploit, and remediate database security flaws in web applications.

SSH Penetration Testing

Conducts comprehensive security assessments of SSH services including enumeration, credential attacks, and vulnerability exploitation.

IDOR Vulnerability Testing Skill

Provides a systematic framework for detecting, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Broken Authentication Security Testing

Identifies and exploits authentication and session management vulnerabilities in web applications to prevent unauthorized access and account takeovers.

Agent Performance Evaluation

Builds robust evaluation frameworks and multi-dimensional rubrics to measure AI agent quality, accuracy, and efficiency.

Network 101: Service Lab Configuration

Configures and tests core network services like HTTP, HTTPS, SNMP, and SMB for penetration testing labs and security research.

Automated Bug Reporting

Automates technical bug investigation and generates standardized markdown reports using AI subagents.

TDD Red-Green-Refactor

Enforces a strict Test-Driven Development workflow using Vitest to ensure every code change is validated by failing tests first.

Scale Game Problem Solving

Exposes architectural weaknesses and fundamental truths by stress-testing software concepts at extreme theoretical scales.

React TDD Workflow

Enforces strict Test-Driven Development patterns for React, Vite, and TypeScript applications using Vitest and React Testing Library.

Intelligent Bug Diagnosis & Fix

Diagnoses and resolves runtime errors by aligning source code with project contracts and architectural context.

Governance RoC Compliance Checker

Evaluates session activity against Rule of Constraints (RoC) policies to ensure regulatory and organizational compliance.

CPython Regression Test Runner

Executes and analyzes the CPython regression test suite with parallel processing and automated failure summarization.

Horizon Lab Auditor

Audits code changes for architectural compliance, security risks, and robustness against defined repository baselines.

Defense-in-Depth Validation

Implements multi-layered data validation patterns to catch invalid data at every architectural boundary and prevent deep-stack failures.

Writing Good Tests

Implements high-quality testing patterns including table-driven tests, condition-based waiting, and strategic mocking strategies.