Security & Testing Claudeスキル

UI Visual Validator

Performs rigorous visual testing and design system compliance checks to ensure UI modifications meet pixel-perfect and accessibility standards.

Golang Testing Patterns

Implements idiomatic Go testing patterns including table-driven tests, benchmarks, and fuzzing using TDD methodology.

GDPR Data Compliance & Privacy

Implements standardized GDPR-compliant data handling workflows including consent management, data subject rights, and automated retention policies.

Protocol Reverse Engineering

Analyzes, documents, and dissects network protocols using advanced packet capture and binary analysis techniques.

Screen Reader Accessibility Testing

Validates web application accessibility by providing standardized testing procedures and command references for major screen readers including VoiceOver, NVDA, and JAWS.

Anti-Reversing Techniques

Analyzes and bypasses software protection mechanisms, including anti-debugging, obfuscation, and anti-VM techniques for authorized security research.

Bats Testing Patterns

Implements comprehensive unit testing for shell scripts using the Bash Automated Testing System (Bats) framework.

JavaScript Testing Patterns

Implements robust testing architectures for JavaScript and TypeScript projects using Jest, Vitest, and modern best practices.

Security Requirement Extraction

Transforms abstract threat models into actionable security requirements, user stories, and test specifications.

WCAG Accessibility Audit & Compliance

Conducts comprehensive WCAG 2.2 accessibility audits and provides actionable remediation strategies for web applications.

Binary Analysis Patterns

Master reverse-engineering through disassembly, decompilation, and structural pattern recognition in compiled binaries.

Python Testing Patterns

Implements robust Python testing suites using pytest, advanced fixtures, and comprehensive mocking strategies.

Debugging Strategies

Employs systematic debugging techniques and profiling tools to identify and resolve complex code issues across any technology stack.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen application defense-in-depth.

Temporal Python Testing

Provides comprehensive strategies and patterns for testing Temporal workflows using pytest, time-skipping, and determinism validation.

Attack Tree Construction

Builds systematic attack tree visualizations and threat path analyses to identify security vulnerabilities and defense gaps.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Parallel Debugging Framework

Systematizes complex issue resolution through structured hypothesis testing and parallel evidence collection to eliminate debugging bias.

STRIDE Threat Analysis Patterns

Implements the STRIDE methodology to systematically identify, categorize, and mitigate security threats during system design and code review.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure web application reliability.

Web3 Smart Contract Testing

Facilitates comprehensive smart contract testing using Hardhat and Foundry frameworks to ensure security, reliability, and gas efficiency.

Solidity Security

Implements industry-standard security patterns and audits Solidity smart contracts to prevent critical blockchain vulnerabilities.

Kubernetes Security Policies

Implement production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and granular RBAC configurations.

Memory Forensics & Malware Analysis

Analyzes system memory dumps to detect malware, extract forensic artifacts, and investigate security incidents using Volatility 3 and professional acquisition tools.

Council Codebase Intelligence

Conducts multi-agent codebase audits and architectural reviews to provide synthesized, CTO-level insights and readiness assessments.

Data Quality Frameworks

Implements robust data validation pipelines using Great Expectations, dbt tests, and formalized data contracts.

Memory Safety Patterns

Implements memory-safe programming patterns like RAII and ownership across Rust, C++, and C to prevent critical resource management bugs.

Dead Code Finder

Identifies and removes unused code, commented blocks, unreachable paths, and redundant imports to streamline codebase maintainability.

Web Application Testing Toolkit

Facilitates end-to-end testing and interaction with local web applications using automated Playwright scripts and server management.

Web Application Testing

Automates and tests local web applications using Playwright with integrated server lifecycle management.