Security & Testing Habilidades de Claude

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and role-based access control patterns.

Debugging Strategies & Root Cause Analysis

Master systematic debugging techniques and profiling tools to efficiently resolve bugs and performance issues across any technology stack.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure reliable user journeys and zero regressions.

SAST Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Web Application Testing

Tests local web applications using Playwright scripts with automated server lifecycle management and DOM inspection capabilities.

GitHub Code Review Swarm

Automates comprehensive GitHub pull request reviews using a coordinated swarm of specialized AI agents to analyze security, performance, and architecture.

Verification & Quality Assurance

Ensures code reliability and agent output quality through real-time truth scoring, automated verification checks, and instant rollback systems.

Dead Code Finder

Identifies and removes unused code, commented blocks, unreachable paths, and redundant imports to streamline codebase maintainability.

Frontend Quality Assurance

Automates comprehensive UI testing and bug discovery using browser automation to ensure high-quality frontend deployments.

Report Bug

Generates and submits professionally formatted GitHub Issues directly from the development environment, complete with reproduction steps, technical analysis, and recommended E2E tests.

Global Validation

Implements comprehensive, multi-layered input validation and sanitization to ensure data integrity and prevent security vulnerabilities across all application entry points.

Frontend Accessibility

Implements inclusive user interfaces using semantic HTML, WCAG-compliant color contrast, and robust keyboard navigation.

Testing and Test Writing

Implements focused Pest framework tests for core user flows and critical business logic while prioritizing fast execution and behavior-driven outcomes.

MoAI Foundation TRUST Quality Framework

Enforces the TRUST 4 principles—Test First, Readable, Unified, and Secured—to ensure enterprise-grade software quality and governance.

STDD Specification Architect

Standardizes the creation of SPEC.md files to ensure atomic, user-centric requirements for Spec-Test-Driven Development workflows.

Spec-Test-Driven Development

Enforces a rigorous specification-first workflow that ensures every feature is documented, tested, and verified before final implementation.

C# xUnit Testing Patterns

Standardizes the creation of C# unit and integration tests using xUnit, Moq, Bogus, and Alba.

Professional Bug Reporting

Generates structured, actionable bug reports with precise reproduction steps and standardized severity classifications.

QA Strategy & Test Planning

Generates comprehensive, risk-based test plans and QA strategies to ensure software quality and reliability.

Scalekit Authentication

Implements secure authentication, enterprise SSO, and MCP server OAuth 2.1 flows using Scalekit across various web frameworks and APIs.

Code Review Gate

Enforces mandatory human oversight for security-sensitive, high-complexity, and large-scale code changes within development workflows.

Web App Testing Toolkit

Automates local web application testing and browser interaction using Playwright and integrated server management.

NPM Package Maintenance

Optimizes and secures Node.js projects by automating dependency updates, vulnerability fixes, and package categorization.

Coverage Analyzer

Analyzes test coverage metrics and prioritizes testing efforts for critical code paths and untested files.

Security Scanner

Identifies OWASP Top 10 vulnerabilities, hardcoded secrets, and XSS risks to ensure codebase security and compliance.

Rust Code Reviewer

Performs deep structural audits of Rust projects focusing on memory safety, ownership patterns, and idiomatic practices.

Smart Test Generator

Automatically generates comprehensive unit, integration, and E2E tests by detecting project frameworks and applying best-practice patterns.

Infrastructure Security Reviewer

Audits infrastructure-as-code and cloud configurations to identify security vulnerabilities, hardcoded secrets, and compliance gaps.

Scale Game Analysis

Exposes fundamental architectural truths and hidden bottlenecks by testing software logic at extreme scales.

QA Test Planning & Strategy

Generates comprehensive test plans including scenario matrices, environment checklists, and reporting protocols for software releases.