Security & Testing Claudeスキル

Property-Based Test Generator

Generates robust property-based tests to uncover edge cases and validate logical invariants across Python, JavaScript, and Haskell projects.

Authenticated Route Tester

Tests and validates authenticated API endpoints using cookie-based JWT authentication and mock authentication patterns.

TDD Methodology

Implements a rigorous test-driven development workflow with spec traceability and multi-tier testing patterns.

Tizen Compliance Checker

Validates Tizen application compliance with official TCT standards across IoT, TV, and mobile profiles.

API Testing & Integration

Builds and manages comprehensive API test suites using modern Node.js and TypeScript frameworks like Jest and Vitest.

Testing Handbook Generator

Generates comprehensive security testing handbooks and strategy guides to streamline audit workflows.

Substrate Vulnerability Scanner

Identifies seven critical security vulnerabilities in Substrate and Polkadot pallets during the development and auditing process.

Substitute Eraser

Scans codebases for placeholders, TODOs, and stubs to generate structured remediation plans for technical debt.

Tizen Static Security Analyzer

Detects memory leaks, buffer overflows, and coding vulnerabilities in Tizen C/C++ and JavaScript applications using specialized static analysis.

Cloudflare Security Checker

Validates Cloudflare Workers security patterns in real-time to prevent vulnerabilities and enforce serverless best practices.

Auth Security Validator

Validates authentication and session management configurations against OWASP security standards to prevent common vulnerabilities.

Solana Vulnerability Scanner

Scans Solana and Anchor programs for critical security vulnerabilities to ensure smart contract integrity.

Smack Policy Generator

Generates SMACK mandatory access control policy files to ensure process isolation and secure resource access for Tizen applications.

Smack Policy Auditor

Audits SMACK policy files for label conflicts, correctness, and mandatory access control compliance in Tizen environments.

Better Auth Security Auditor

Audits Better Auth integrations to identify security gaps, configuration errors, and production readiness issues.

JUnit Core Testing Standards

Implements professional JUnit 5 testing patterns and coverage standards for high-quality Java applications.

Scale Game Problem Solving

Validates architectural decisions by simulating extreme scaling scenarios to identify hidden bottlenecks and system failures.

GDPR Auditor

Analyzes codebases and system documentation to identify GDPR compliance gaps, data protection risks, and privacy policy inconsistencies.

Signal Isolated Auth

Enforces maximal security isolation for Signal authentication using nested VM and container boundaries with colored operad constraints.

Root Cause Tracing

Systematically traces software bugs backward through the call stack to identify and resolve original triggers at their source.

Semgrep Static Analysis

Performs high-speed static analysis and security scanning to identify vulnerabilities and enforce custom code patterns.

Semgrep Rule Creator

Generates custom Semgrep rules to detect security vulnerabilities and logic bugs within source code.

Polar Integration Validator

Validates and secures Polar.sh billing integrations by checking webhooks, signatures, and environment configurations.

Security Implementation Guide

Implements production-ready security patterns to protect web applications against common vulnerabilities like XSS, CSRF, and SQL injection.

Go Code Reviewer

Performs comprehensive Go code reviews focusing on correctness, security, performance, and idiomatic best practices.

Project Auditor

Conducts comprehensive production-readiness audits to identify security vulnerabilities, code quality issues, and infrastructure gaps in AI-generated or legacy projects.

Sandbox Security

Executes untrusted code and system commands in secure, isolated microVMs to protect the host environment.

SARIF Security Parsing

Parses and analyzes Static Analysis Results Interchange Format (SARIF) files to streamline security vulnerability management and tool integration.

Tizen Sandbox Escape Detector

Tests Tizen application sandboxes for privilege escalation and escape vulnerabilities to ensure robust process isolation.

KiCad Design Verification

Automates electrical and design rule checks (ERC/DRC) for KiCad projects to ensure error-free, production-ready hardware designs.