Security & Testing Claudeスキル

SEMO Integrated Quality Audit

Audits the entire SEMO monorepo for package quality, standards compliance, and structural inefficiencies.

E2E Playwright Diagnosis

Diagnoses and resolves End-to-End (E2E) test failures in Playwright using a systematic, tool-driven workflow.

TypeScript Expert

Applies expert-level guidelines to write, review, and refactor TypeScript code for maintainability, type safety, and performance.

Validation Checklist

Guides software projects through a standardized pre-delivery validation process for backend and frontend code.

Code Review Checklist

Provides systematic guidelines and comprehensive checklists for conducting thorough code reviews across functionality, security, and performance standards.

Pre-Commit Validator

Automates pre-commit checks for TypeScript type safety, test execution, code coverage, and Git branch compliance.

OIDC Federation Patterns

Implements secretless cloud authentication using OpenID Connect to eliminate long-lived credentials in CI/CD workflows.

SLSA Security Playbook

Implements Supply Chain Levels for Software Artifacts (SLSA) to verify build integrity and secure software supply chains.

Testing Workflow

Executes comprehensive test suites including unit, integration, E2E, and mutation tests to validate code changes and ensure quality.

OPA Image Security Templates

Secures Kubernetes clusters by enforcing OPA policies for container registry allowlisting, image digests, and cryptographic signature verification.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, verified code implementation for features and bug fixes.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, fixtures, and advanced mocking patterns to ensure code reliability.

Screen Reader Accessibility Testing

Validates web application accessibility by providing comprehensive guides and implementation patterns for screen reader testing across major platforms.

Systematic Debugging

Implements a rigorous, four-phase root cause analysis process to eliminate bug-fixing guesswork and technical debt.

Debugging Strategies

Master systematic debugging techniques and profiling tools to identify and resolve root causes across any technology stack.

Quality Gate Skill

Executes a comprehensive, non-destructive quality gate including linting, formatting, type safety, tests, and security checks for your codebase.

Systematic Debugging

Enforces a disciplined, four-phase approach to identifying and resolving root causes of software bugs and test failures.

Security Requirement Extraction

Transforms threat models and business context into actionable security requirements, user stories, and test specifications.

Claude Configuration Reviewer

Reviews Claude configuration files for security vulnerabilities, structural integrity, and prompt engineering best practices.

Formal Specification Driven Development

Implements high-assurance software by verifying requirements through Idris2 formal specifications before generating production code in Python, Rust, or TypeScript.

Kent Beck TDD Enforcer

Enforces strict test-driven development following Kent Beck’s micro-cycle methodology for robust code implementation.

Sample Skill

Walks through a sample workflow for creating and running unit tests.

Systematic Debugging Workflow

Enforces a rigorous 6-phase root cause analysis process to identify, reproduce, and fix software bugs with evidence-based verification.

Iterative Code Review With Codex

Guides an iterative code review process by collaborating with external AI models to resolve pull request comments.

Lingx Testing Patterns

Implements standardized testing methodologies for full-stack TypeScript applications using Vitest, Prisma, and Playwright.

AC Security Sandbox

Secures autonomous code execution through multi-layered sandboxing, command validation, and filesystem permission controls.

Bug Fix Workflow

Implements a disciplined, TDD-driven approach to identifying, reproducing, and resolving software defects with guaranteed verification.

Skill Invocation Test

Verifies active skill invocation capabilities by triggering a specific response when a secret codeword is detected.

Rigorous Task Verification

Enforces an empirical evidence-first workflow by requiring command execution and output validation before any task is claimed as complete.

Test Observability for Playwright

Integrates Playwright testing suites with OpenTelemetry and the Grafana stack to provide deep visibility into test failures across distributed systems.