Security & Testing Claudeスキル

OWASP Top 10 Security Audit

Audits source code for the most critical web application security risks with actionable remediation patterns and checklists.

Secure Coding Practices

Implements robust security patterns including input validation, secrets management, and secure authentication to protect applications from common vulnerabilities.

Cloud Penetration Testing & Security Audit

Conducts comprehensive security assessments and penetration tests across AWS, Azure, and Google Cloud Platform environments.

Wispbit Code Review

Evaluates code changes against custom quality rules and best practices automatically after every edit.

DryRun Security Remediation

Remediates security vulnerabilities identified by DryRunSecurity by applying context-aware fixes grounded in authoritative documentation.

1Password CLI Manager

Manages 1Password CLI operations to securely fetch, inject, and handle secrets during development workflows.

TDD Red-Green-Refactor Workflow

Guides the implementation of Test-Driven Development using the Red-Green-Refactor cycle and industry-standard testing patterns.

Bug Diagnosis & RCA

Facilitates rapid root cause analysis by guiding Claude through evidence-based hypothesis testing and systematic debugging.

Bug Fix Debugger

Orchestrates the complete lifecycle of bug troubleshooting and resolution through a structured four-stage framework including diagnosis, design, planning, and verification.

Automated Testing Expert

Integrates comprehensive testing frameworks and generates automated scripts to ensure software reliability and high code quality.

Web Application Testing

Simplifies end-to-end testing and browser automation for local web applications using Python and Playwright.

Systematic Bug Diagnoser

Guides developers through a structured framework to identify, analyze, and verify the root causes of software defects and system anomalies.

Bug Fix Execution & Verification

Manages the end-to-end execution and validation of bug fixes through structured progress tracking and comprehensive acceptance testing.

Web Testing & Quality Assurance

Provides a comprehensive testing suite for web applications covering unit, integration, E2E, performance, and accessibility testing.

Better Auth Integration

Implements secure authentication and authorization flows using the framework-agnostic Better Auth TypeScript library.

Defense-in-Depth Validation

Implements multi-layered data validation strategies to prevent deep-seated execution bugs and ensure structural code reliability.

H5 Smoke Test & Deployment Verification

Verifies H5 applications post-deployment through structured checks for APIs, sockets, routing, and asset consistency.

Bug Triage Standardizer

Standardizes vague error reports into actionable, reproducible bug definitions with clear evidence and acceptance criteria.

Better Auth Integration

Implements comprehensive authentication and authorization systems using the framework-agnostic Better Auth TypeScript library.

Automated Testing Expert

Automates the generation, execution, and analysis of comprehensive test suites across unit, integration, and end-to-end testing frameworks.

Systematic Bug Diagnosis

Identifies software root causes through a disciplined hypothesis-driven framework to minimize debugging time and eliminate guesswork.

Web Testing Suite

Implements a comprehensive testing strategy across unit, integration, E2E, performance, and security layers.

Bug Fix Execution & Verification

Manages the end-to-end process of executing bug fix plans, tracking progress, and conducting rigorous multi-dimensional verification.

Bug Fix Solution Designer

Standardizes the bug resolution process by generating comprehensive fix strategies, risk assessments, and contingency plans.

GDPR Data Handling & Privacy Compliance

Implements GDPR-compliant data processing, consent management systems, and privacy-by-design controls for applications handling EU personal data.

Web Application Testing Toolkit

Automates and tests local web applications using Playwright with integrated server lifecycle management.

Bug Triage Expert

Standardizes the bug reporting process by transforming vague issues into reproducible, actionable, and testable tickets.

Web Application Testing Toolkit

Enables automated end-to-end testing and UI interaction for local web applications using Playwright and integrated server management.

H5 Post-Deployment Smoke Test

Performs a rapid 8-point verification of H5 applications post-deployment to ensure critical paths like APIs, WebSockets, and audio features are functional.

Defense-in-Depth Validation

Implements multi-layered data validation patterns to eliminate structural bugs and ensure system integrity across all execution paths.