Security & Testing Claudeスキル

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Secrets Management & CI/CD Security

Implements secure secrets handling for CI/CD pipelines using industry-standard tools like Vault, AWS Secrets Manager, and platform-native solutions.

Testing Handbook Generator

Generates comprehensive security testing handbooks and strategy guides to streamline audit workflows.

Kubernetes Security Policy Expert

Implements production-grade Kubernetes security configurations including NetworkPolicies, RBAC, and Pod Security Standards.

Temporal Python Testing

Streamlines Temporal workflow testing in Python through automated time-skipping, activity mocking, and determinism validation.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

GitHub Repo Manager Self-Test

Executes and diagnoses the comprehensive test suite for the GitHub Repo Manager plugin to ensure reliable repository automation.

Requirement Quality Validator (speckit-checklist-zh)

Generates professional, domain-specific checklists to validate the quality, clarity, and completeness of software requirements.

Skill Reviewer

Maintains high quality standards for Claude Code skills through systematic auditing and a comprehensive 10-point quality checklist.

Self-Check Quality Gate

Automates multi-platform code quality audits and pre-commit checks to catch logic errors and performance bottlenecks before they reach production.

QA Testing & Methodology

Implements standardized QA frameworks and test design patterns to ensure comprehensive software quality and accessibility coverage.

CVE Dependency Audit

Scans project dependencies across multiple programming languages to identify and report known security vulnerabilities and CVEs.

CVE Vulnerability Lookup

Retrieves detailed information about Common Vulnerabilities and Exposures (CVEs) and affected software versions directly within your development environment.

Security Reviewer

Enforces comprehensive security best practices and identifies potential vulnerabilities during the development process.

Verification Loop

Automates a multi-stage validation process including builds, type checking, linting, testing, and security scans to ensure production-ready code.

Spring Boot Security

Implements industry-standard security patterns and vulnerability mitigations for Java Spring Boot applications.

TDD Workflow

Enforces test-driven development practices and 80%+ code coverage for robust software delivery.

Go Testing & TDD Patterns

Implements idiomatic Go testing patterns including table-driven tests, benchmarks, and fuzzing to ensure robust code quality.

Go Testing & TDD Patterns (zh-TW)

Implements idiomatic Go testing patterns including table-driven tests, benchmarks, and fuzzing to ensure robust code quality.

Workflow Validator

Ensures AI-generated JSON artifacts meet specific structural and content criteria through deterministic validation scripts.

Spring Boot TDD

Implements a rigorous test-driven development workflow for Spring Boot applications to ensure high code quality and 80%+ test coverage.

Eval Harness for EDD

Implements an evaluation-driven development framework to measure and improve AI coding reliability through structured testing and metrics.

Validator Role

Implements rigorous software quality assurance, comprehensive test suites, and security-focused code reviews to ensure production-grade standards.

TypeScript Testing Suite

Masters professional TypeScript testing workflows by integrating runtime behavior verification with deep type-level correctness assertions.

Spring Boot Verification Loop

Automates a comprehensive quality gate for Spring Boot projects including builds, testing, security scanning, and code review.

Rails Code Quality Gates

Implements a multi-layered validation system for Ruby on Rails using Solargraph, Sorbet, and Rubocop to ensure enterprise-grade code standards.

Bug Diagnosis & Root Cause Analysis

Diagnoses and fixes complex software defects in .NET and Angular applications using a structured, evidence-based methodology.

Semgrep Static Analysis

Performs high-speed static analysis and security scanning to identify vulnerabilities and enforce custom code patterns.

RSpec Testing Patterns

Implements enterprise-grade RSpec testing patterns for robust Ruby on Rails application development.

Authenticated Route Tester

Tests and validates authenticated API endpoints using cookie-based JWT authentication and mock authentication patterns.