Security & Testing Claudeスキル

Vitest Test Runner Setup

Configures Vitest for unit and integration testing with Testing Library integration and monorepo support.

Write Playwright Tests

Generates robust Playwright E2E tests using accessibility-first queries, reusable fixtures, and the Page Object Model.

Systematic Debugging

Enforces a rigorous four-phase protocol to identify root causes and implement reliable software fixes without guesswork.

Expert Code Review Panel

Performs deep code analysis using parallel expert agents for security, performance, and architectural integrity.

TDD Kata Workflow

Facilitates professional Test-Driven Development practice by enforcing strict Red-Green-Refactor cycles and code kata constraints.

Web Application Testing

Automates and tests local web applications using Playwright with integrated server lifecycle management.

Smart Assertion Helper

Analyzes code logic to automatically generate precise, multi-framework test assertions for unit and integration testing.

Test Generation Specialist

Generates comprehensive unit test cases by analyzing source code structure, dependencies, and boundary conditions across multiple programming languages.

Security Review

Performs comprehensive security audits and vulnerability assessments based on OWASP standards to identify and mitigate code-level risks.

Mock Generation Skill

Generates realistic mock data and stub functions to isolate test environments and accelerate software testing.

QA Engineer

Validates software implementation through automated test execution, edge case identification, and comprehensive bug reporting.

Role-Based Access Control (RBAC)

Implements a complete authorization framework with hierarchical user roles and permission middleware for full-stack applications.

Defense-in-Depth Validation

Implements multi-layered data validation strategies across entry points, business logic, and environment guards to prevent structural bugs.

Root Cause Tracing

Traces software bugs backward from symptoms to their original source to prevent recurring issues and technical debt.

Defense-in-Depth Validation

Implements multi-layered data validation to prevent deep-seated execution failures and ensure structural system integrity.

Test Writer

Generates comprehensive unit, integration, and end-to-end tests following industry-standard patterns and best practices.

Systematic Debugging

Implements a rigorous five-step methodology to identify, isolate, and resolve software bugs without guesswork.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to catch bugs through sequential syntax, unit, integration, and end-to-end testing cycles.

Dependency Evaluator

Evaluates the health and risk of programming dependencies through a systematic 10-signal analysis to prevent technical debt and security vulnerabilities.

Remediation Configuration Security

Provides actionable security fix patterns for configuration and deployment vulnerabilities across multiple programming languages.

Vue 3 Playwright Testing

Streamlines end-to-end and component testing for Vue 3 applications using Playwright and Vite best practices.

Web Accessibility & WCAG Compliance

Implements and reviews web interfaces to ensure they meet W3C WAI and WCAG accessibility standards for inclusive user experiences.

Language-Specific Security Vulnerability Patterns

Identifies language-specific security vulnerabilities across major programming stacks using optimized regex and grep patterns.

Crypto Security Remediation

Fixes cryptographic security flaws by replacing weak algorithms, insecure randomness, and broken TLS configurations with language-specific secure patterns.

Apex Systematic Debugger

Conducts systematic, evidence-based debugging using hypothesis-driven investigation and pattern recognition.

Authentication Security Remediation

Provides language-specific patterns and secure implementations for fixing authentication and authorization vulnerabilities in codebases.

Angular Security Patterns

Provides comprehensive implementation patterns and best practices for securing Angular applications using JWT, OAuth2, and advanced session management.

OWASP ASVS 5.0 Security Requirements

Accesses and maps OWASP ASVS 5.0 requirements to streamline security audits and ensure application compliance across 17 domains.

Cloud Penetration Testing

Conducts comprehensive security assessments and ethical hacking across AWS, Azure, and Google Cloud environments.

Jest Testing Patterns

Implements robust Jest testing suites using TDD, factory patterns, and modular mocking strategies.