Security & Testing Claudeスキル

mTLS Security Configuration

Configures mutual TLS (mTLS) for zero-trust service communication and automated certificate management across cloud-native environments.

Supabase Auth Configuration

Streamlines the setup and configuration of Supabase authentication providers, JWT settings, and secure PKCE authentication flows.

Systematic Debugging

Implements a rigorous, evidence-based methodology for identifying root causes and resolving complex software bugs without guesswork.

IDOR Vulnerability Testing

Provides systematic methodologies for detecting, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Test Coverage Improver

Automates the identification of code coverage gaps and generates high-impact tests to strengthen software reliability.

Attack Tree Construction

Generates systematic attack path visualizations and security threat models to identify vulnerabilities and prioritize defensive investments.

SAST Configuration & Security Scanning

Configures Static Application Security Testing (SAST) tools and custom security rules to automate vulnerability detection in application code.

E2E Testing Patterns

Implements robust end-to-end testing strategies using Playwright and Cypress to ensure application reliability and prevent regressions.

Cloudflare Zero Trust Security Audit

Audits and secures Cloudflare deployments by identifying access gaps and implementing Zero Trust policies across all environments.

Temporal Python Testing

Implements comprehensive testing strategies for Temporal Python workflows using time-skipping, activity mocking, and determinism validation.

Accessibility Remediation

Automatically detects and resolves WCAG 2.2 accessibility violations in web components with AI-powered code suggestions and one-click application.

JavaScript Testing Patterns

Implements robust JavaScript and TypeScript testing strategies using modern frameworks like Jest, Vitest, and Testing Library.

Clerk Middleware Protection

Implements secure route guards and authorization patterns using Clerk middleware for Next.js applications.

Frontend Performance & Security

Optimizes React applications using production-ready performance patterns, accessibility standards, and security hardening protocols.

Error Handling Patterns

Implements robust error handling strategies across multiple programming languages to build resilient, fault-tolerant applications.

Debugger Detective

Performs high-precision root cause analysis and AST call chain tracing to identify and resolve complex software bugs.

Quality Gates

Implements rigorous quality checkpoints, user approval gates, and iterative feedback loops for high-reliability AI development workflows.

Web Application Testing

Automates the testing and debugging of local web applications using Playwright scripts and integrated server management.

Story-Driven Acceptance Testing

Guides Product Owners through systematic acceptance testing to verify user stories against defined criteria before final approval.

Codex Deep Analysis & Review

Automates thorough code reviews and complex architectural investigations using the Codex CLI as a specialized sub-agent.

Requirement-Aware Test Coverage Reporter

Generates comprehensive test coverage reports that map code execution to specific project requirements and identify critical testing gaps.

Story Verification & Handoff

Standardizes the developer self-review and verification process to ensure story completion before handoff or pull request.

Code Principles Validator

Validates and enforces seven core engineering principles to ensure code quality, test coverage, and architectural integrity.

AISDLC Code Quality Principles

Validates code compliance against seven core engineering principles including TDD, modularity, and technical debt reduction.

Requirements Quality Validator

Validates software requirement documentation for clarity, testability, and traceability before moving to the design phase.

TDD Red Phase Actuator

Automates the initial stage of Test-Driven Development by generating failing test cases from requirements before implementation begins.

Solidity Security & Smart Contract Auditing

Implements industry-standard security patterns and audits smart contracts to prevent critical blockchain vulnerabilities.

Requirement Traceability & SDLC Mapping

Standardizes requirement tracking across the software development lifecycle using structured REQ-* key patterns and validation rules.

Automated Test Coverage Generator

Automatically generates comprehensive unit, edge, and boundary tests to resolve code coverage gaps and validate business requirements.

Deno Core Best Practices

Enforces professional Deno TypeScript standards for project configuration, dependency management, and secure runtime permissions.