Security & Testing Habilidades de Claude

Terraform Testing & Validation

Automates and optimizes Terraform infrastructure testing using native HCL tests, Terratest, and comprehensive validation workflows.

Forensics Investigation

Orchestrates multi-phase reverse engineering workflows to decode black-box systems, APIs, and unfamiliar codebases using specialized subagents.

Testing Patterns for Claude Code

Implements systematic TDD workflows, automated test generation, and comprehensive coverage strategies across major testing frameworks.

Security Best Practices

Implements secure coding standards, vulnerability prevention, and robust secret management patterns to harden applications.

Sandbox Runtime (SRT) Guide

Provides patterns and configurations for the Sandbox Runtime (srt) to secure autonomous Claude Code CLI runs.

Test-Driven Development (TDD) Workflow

Enforces a strict Red-Green-Refactor cycle to ensure every line of production code is verified by a test that was proven to fail first.

Verification Before Completion

Enforces a strict evidence-first protocol requiring fresh command output and validation before any task is marked as complete.

Testing Anti-Pattern Guard

Prevents common software testing mistakes by enforcing strict principles against mock misuse and production code pollution.

Systematic Debugging

Enforces a rigorous four-phase framework to identify root causes and implement test-driven fixes for any software bug.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure every line of production code is verified by a failing test first.

Web Application Testing & Playwright Automation

Automates and validates local web applications using Playwright for comprehensive end-to-end testing and UI debugging.

Global Input Validation

Implements robust, full-stack input validation and data sanitization to ensure application security and data integrity.

Security Auditor

Reviews source code for vulnerabilities and provides actionable remediation steps to harden applications against cyber threats.

ERC-4337 Privacy Wallet Dev

Develops privacy-preserving Account Abstraction wallets for vehicle identity and sensitive data management using ERC-4337 standards.

Test Coverage Architect

Builds comprehensive, executable test coverage for mission-critical paths while eliminating empty stubs and vanity metrics.

TypeScript Development & TDD

Implements type-safe, test-driven TypeScript features following strict dependency injection patterns.

TypeScript Testing Methodology

Implements a high-confidence, three-tiered testing framework for TypeScript using dependency injection and behavior-driven patterns.

Python Testing Strategy

Implements a high-confidence, three-tier testing methodology for Python applications using real dependencies and dependency injection.

Python Architecture Reviewer

Reviews Architecture Decision Records (ADRs) to ensure compliance with strict Python testing levels and modularity principles.

TRD Architect & Testing Blueprint

Generates authoritative technical requirements and three-tier testing strategies to guide rigorous feature implementation.

No-Mock Test Strategy

Implements a high-confidence testing methodology focused on real-world behavior and the elimination of brittle mocks.

TypeScript Architecture Auditor

Evaluates Architectural Decision Records (ADRs) against strict testing principles and dependency injection standards to ensure robust system design.

Strict Python Code Reviewer

Conducts adversarial Python code reviews by enforcing strict type checking, security standards, and a zero-tolerance policy for mocking.

Strict TypeScript Code Reviewer

Enforces rigorous TypeScript quality standards by rejecting mocks, validating dependency injection, and running comprehensive static analysis.

Completion Integrity

Enforces code quality and test rigor by blocking commits that use shortcuts, suppress warnings, or bypass testing requirements.

Bats Shell Testing Patterns

Masters the Bash Automated Testing System (Bats) to create comprehensive unit tests and CI/CD validation for shell scripts.

Next.js & Supabase Testing Patterns

Provides comprehensive testing patterns and implementation guides for Next.js App Router and Supabase applications using Vitest and Playwright.

Security Quick Audit

Performs rapid security assessments on code changes to identify common vulnerabilities and risks before deployment.

API Security Patterns

Implements robust API security architectures using OWASP-aligned patterns for authentication, authorization, and data protection.

Python Type Safety Validator

Automatically validates Python type safety by running Pyrefly or Mypy whenever files are modified.