Security & Testing Claudeスキル

Coverage Analyzer

Analyzes test coverage metrics and prioritizes testing efforts for critical code paths and untested files.

Moai Security Threat Modeling

Analyzes system architectures using STRIDE methodology and generates production-ready IDS/IPS and WAF security rules.

Quality Guardian

Enforces production-grade code quality standards, test coverage requirements, and UI design constraints during the development process.

AI Code Reviewer

Performs systematic code audits to identify security vulnerabilities, logic bugs, and maintainability issues with actionable feedback.

Story-Driven Acceptance Testing

Guides Product Owners through manual verification steps to validate features before they are merged into production.

Root Cause Tracing

Systematically traces bugs backward through call stacks to identify and fix the original source of invalid data.

LangGraph SITNOVA Security Automation

Implements stateful AI operator flows for automated security gate systems using the LangGraph framework and real-time OCR integrations.

Bats Testing Patterns

Provides comprehensive patterns and best practices for writing automated shell script tests using the Bats framework.

NPM Package Maintenance

Optimizes and secures Node.js projects by automating dependency updates, vulnerability fixes, and package categorization.

Verification Loop

Automates a comprehensive multi-phase quality gate system to verify code integrity through builds, tests, and security scans.

Report Bug

Generates and submits professionally formatted GitHub Issues directly from the development environment, complete with reproduction steps, technical analysis, and recommended E2E tests.

Global Validation

Implements comprehensive, multi-layered input validation and sanitization to ensure data integrity and prevent security vulnerabilities across all application entry points.

Global Coding Style

Enforces consistent formatting, naming conventions, and type safety across PHP and TypeScript environments while automating code quality standards.

Frontend Accessibility

Implements inclusive user interfaces using semantic HTML, WCAG-compliant color contrast, and robust keyboard navigation.

Metasploit Framework Penetration Testing

Streamlines security assessments and ethical hacking workflows using the Metasploit Framework for vulnerability exploitation and post-exploitation.

Frontend Quality Assurance

Automates comprehensive UI testing and bug discovery using browser automation to ensure high-quality frontend deployments.

Python Testing

Implements robust Python testing suites using pytest, focusing on isolated test design, mocking external dependencies, and asynchronous execution patterns.

WordPress Penetration Testing

Performs comprehensive security audits and vulnerability assessments of WordPress installations using professional penetration testing methodologies.

TDD Failure Recovery

Recovers from unexpected test behaviors and TDD cycle issues using standardized rollback and diagnostic protocols.

Testing & Test Writing

Develops strategic, behavior-focused unit and end-to-end tests using Vitest and Playwright to ensure robust application functionality and reliability.

Web App Testing Toolkit

Automates local web application testing and browser interaction using Playwright and integrated server management.

70% Test Coverage Guard

Ensures all new code changes meet a 70% test coverage threshold while verifying that the full test suite, linting, and compilation remain passing.

Kubernetes Sealed Secrets Generator

Automates the creation and encryption of Kubernetes Sealed Secrets for secure storage in Git repositories.

Safety Memory

Implements specific coding standards and protocols for managing safety memory within agentic environments.

Testing Skills

Verifies and bulletproofs process documentation by applying Red-Green-Refactor cycles through realistic pressure scenarios.

Collect Selector

Identifies or generates the optimal data-testid selector for Playwright end-to-end testing based on a strict priority hierarchy.

Systematic Debugging

Implements a disciplined, four-phase methodology to identify and resolve the root causes of technical issues through structured investigation and hypothesis testing.

Security Code Auditor

Conducts comprehensive security audits and vulnerability checks to identify potential threats and compliance issues in source code.

Web Application Testing

Automates local web application testing and UI debugging using Playwright and managed server lifecycles.

Automated Build & Test

Automatically detects, builds, and tests code changes across multiple programming languages and project types.