Security & Testing Claudeスキル

Testing Anti-Patterns Guard

Prevents common software testing mistakes by enforcing best practices for mocks, production code isolation, and test-driven development.

Root Cause Tracing

Systematically traces software bugs back to their original trigger points through call stack analysis and strategic instrumentation.

Systematic Debugging Framework

Implements a rigorous four-phase methodology to identify root causes and ensure reliable software fixes before proposing code changes.

Defense-in-Depth Validation

Implements multi-layered validation patterns to prevent deep execution failures and make software bugs structurally impossible.

Verification Before Completion

Enforces a strict evidence-based workflow that requires running verification commands before claiming any task is finished.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to make software bugs structurally impossible by verifying data at every system boundary.

Testing Anti-Patterns

Identifies and prevents common software testing pitfalls to ensure test suites verify real behavior rather than mock implementation.

Strict Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor workflow by requiring failing tests before any production code is written.

Condition-Based Waiting

Eliminates flaky tests and race conditions by replacing arbitrary timeouts with smart, asynchronous condition polling.

Skill Testing with Subagents

Applies Test-Driven Development (TDD) principles to AI process documentation to ensure skills resist rationalization under pressure.

Condition-Based Waiting

Eliminates flaky tests and race conditions by replacing arbitrary timeouts with intelligent state polling.

Skill Testing with Subagents

Applies Test-Driven Development (TDD) principles to AI skills to ensure they remain effective under pressure and resist rationalization.

Verification Before Completion

Enforces rigorous, evidence-based verification protocols before any task is claimed as complete or submitted for review.

Test-Driven Development (TDD) Superpowers

Enforces a strict Red-Green-Refactor cycle to ensure all code is verified by failing tests before implementation.

API Testing Mastery

Implements comprehensive API testing strategies, automation workflows, and Postman MCP integrations for reliable backend services.

Testing Strategy Specialist

Designs and implements comprehensive testing strategies to ensure codebase quality and reliability before the code review process.

Express API Testing Patterns

Implements comprehensive testing strategies for Express.js applications including unit, integration, and middleware tests.

Coverage Loop

Increases test coverage iteratively by identifying code gaps and writing targeted tests until a specific percentage is achieved.

Swift Testing Expert

Implements modern Swift Testing patterns using macros, assertions, and advanced test organization for iOS development.

Guardrails & Safety Instrumentation

Implements comprehensive input and output safety checks to secure AI agent interactions and protect sensitive data.

Automated Code Verification

Automates code verification by suggesting and running context-aware tests, lints, and syntax checks after every modification.

CTO Codebase Audit

Performs comprehensive, expert-level assessments of software architecture and code quality to identify technical risks and scaling opportunities.

Automated Code Fixer

Executes targeted code fixes for issues identified in prior reviews using parallel subagents and automated verification.

HTML Injection Security Testing

Identifies and exploits HTML injection vulnerabilities to secure web applications against content manipulation and phishing attacks.

Privilege Escalation Methods

Provides specialized techniques and command patterns for escalating system privileges from low-level access to root or administrator status.

SQL Injection Security Testing

Conducts comprehensive SQL injection vulnerability assessments to identify, exploit, and remediate database security flaws in web applications.

SSH Penetration Testing

Conducts comprehensive security assessments of SSH services including enumeration, credential attacks, and vulnerability exploitation.

Pentest Commands Reference

Provides a comprehensive command reference for penetration testing tools including network scanning, exploitation, and vulnerability assessment.

Security Scanning Tools

Provides expert guidance and command-line patterns for network discovery, vulnerability assessment, and security auditing across diverse environments.

Wireshark Traffic Analysis

Performs comprehensive network packet capture, filtering, and protocol analysis for troubleshooting and security investigations.