Security & Testing Claudeスキル

Temporal Python Testing

Automates and guides the testing of Temporal workflows in Python using pytest, time-skipping, and determinism validation.

Agent Evaluation Framework

Evaluates and benchmarks LLM agents using behavioral testing, reliability metrics, and adversarial assessments to ensure production-grade performance.

Infrastructure Compliance Checker

Automates infrastructure security audits against industry standards including SOC2, HIPAA, and PCI-DSS to identify and remediate configuration gaps.

Design-by-Contract Developer

Implements formal contract verification using preconditions, postconditions, and invariants across multiple programming languages to ensure code reliability.

Authentication & Access Control

Implements secure user authentication and multi-tenant access control for Next.js 15 and Supabase applications using server-side patterns.

Access Control Auditor

Audits and identifies vulnerabilities in access control configurations, IAM policies, and network permissions to ensure security compliance.

Compliance Report Generator

Automates the creation of professional security compliance reports and regulatory documentation for major industry standards.

Plan Validation & Scoring

Validates AI-generated development plans through adversarial challenges and quantitative confidence scoring to ensure production readiness.

API Security Fuzzer

Performs automated fuzz testing on REST APIs to identify security vulnerabilities, boundary value issues, and unexpected behavior.

Reflective Verification

Implements a systematic reflection methodology to verify task completion and ensure engineering precision through rigorous quality assurance.

Bitcoin Auth Diagnostics

Diagnoses and resolves authentication failures, signature verification errors, and token generation issues within the bitcoin-auth ecosystem.

Image Accessibility & SEO Checker

Analyzes and validates web page images for accessibility compliance, SEO optimization, and performance best practices.

Web Link & Navigation Auditor

Analyzes and validates website links and buttons to identify broken navigation, accessibility gaps, and SEO-damaging code patterns.

Web Application Testing Toolkit

Facilitates end-to-end testing and UI debugging for local web applications using Python Playwright scripts and automated server management.

Chaos Engineering Toolkit

Designs and executes controlled failure experiments to identify system vulnerabilities and validate resilience mechanisms.

Secure Authentication & Authorization Patterns

Implements secure, industry-standard authentication and authorization patterns including JWT, OAuth2, and RBAC for robust access control.

Web Accessibility Auditor

Performs comprehensive accessibility audits on web pages to ensure WCAG 2.1 compliance and inclusive user experiences.

Systematic Debugging Strategies

Applies methodical debugging techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

Penetration Tester

Conducts automated security audits and vulnerability assessments to identify OWASP Top 10 threats in web applications and APIs.

Penetration Testing & Security Audit

Automates web application security assessments to identify OWASP Top 10 vulnerabilities and suggest remediation steps.

Auth Implementation Patterns

Implements industry-standard authentication and authorization patterns including JWT, OAuth2, and RBAC to secure web applications and APIs.

GDPR Compliance & Data Handling

Implements GDPR-compliant data processing, consent management, and data subject rights within software architectures.

Compliance Architecture Expert

Designs enterprise-grade, regulatory-compliant cloud architectures for SOC 2, HIPAA, GDPR, and PCI-DSS environments.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection in application source code.

Examples Inclusivity Audit

Analyzes mock data, documentation, and test fixtures for cultural assumptions to ensure software inclusivity and diverse representation.

Encryption Tool

Secures sensitive information by providing seamless data encryption and decryption capabilities within Claude Code.

Database Security Scanner

Performs automated security audits on PostgreSQL and MySQL databases to identify vulnerabilities and ensure OWASP compliance.

Gotrino Inclusion Help

Provides a comprehensive command reference and workflow guide for the Gotrino inclusion and accessibility plugin.

Inclusion Audit

Conducts comprehensive code reviews to identify exclusionary language, internationalization gaps, and ethical design concerns.

Attack Tree Construction

Builds comprehensive, structured attack trees to visualize threat paths and identify systemic security vulnerabilities.