Security & Testing Claudeスキル

Active Directory Security Testing

Performs comprehensive security audits and penetration testing on Microsoft Active Directory environments to identify and mitigate vulnerabilities.

Maverick Scope Boundaries

Enforces strict safety guardrails and authorization protocols to prevent unauthorized infrastructure, security, or production system changes.

Systematic Debugging Workflow

Implements a disciplined four-phase approach to debugging that prioritizes root cause investigation over trial-and-error fixing.

Local Code Verification

Automates local pre-push checks including linting, typechecking, and testing to ensure code quality before deployment.

Systematic Debugging

Orchestrates a rigorous four-phase root cause analysis process to identify, isolate, and permanently resolve software bugs.

Pytest Baseline & Coverage Runner

Executes Pytest suites with comprehensive coverage analysis and baseline tracking to detect regressions and monitor testing trends.

Pytest Profiling & Optimization

Diagnoses and speeds up slow Python test suites using systematic profiling and targeted optimization patterns.

Test Design & TDD Architect

Designs comprehensive test suites and generates structured TDD specifications using a Top-Down approach to define software interfaces.

TDD Implementation Cycle

Implements production-ready code using rigorous TDD/ATDD principles and the Red-Green-Refactor cycle.

TDD Orchestration Workflow

Orchestrates a comprehensive Test-Driven Development (TDD) and Acceptance Test-Driven Development (ATDD) workflow using the Red-Green-Refactor cycle.

OpenShift E2E Test Generator

Automates the creation of end-to-end test artifacts for OpenShift operators through dynamic repository analysis and git diff tracking.

TypeScript Best Practices

Enforces high-quality coding standards and robust type safety for TypeScript, Node.js, and React projects.

QA Auditor

Conducts professional-grade web application quality assurance audits with comprehensive HTML reporting and automated metric scoring.

Testing Strategy & Best Practices

Standardizes test implementations across Vitest, Playwright, and pytest to ensure high-quality, reliable software delivery.

OSS-Fuzz Integration

Streamlines the setup, local testing, and enrollment of open-source projects into the Google OSS-Fuzz continuous fuzzing infrastructure.

Realistic Test Data Generator

Generates high-quality, production-like datasets and custom schemas to accelerate software testing and database population.

Solana Vulnerability Scanner

Scans Solana and Anchor programs for critical security vulnerabilities including arbitrary CPI, improper PDA validation, and missing signer checks.

Markdown E2E Testing

Executes end-to-end tests written in plain English markdown using Playwright and Claude's intent-based element recognition.

Property-Based Testing Guide

Implements advanced property-based testing strategies to identify edge cases and ensure system invariants across multiple programming languages.

Fuzzing Harness Development

Provides expert guidance and implementation patterns for creating high-performance, deterministic fuzzing harnesses across multiple programming languages.

Atheris Python Fuzzer

Performs coverage-guided fuzz testing for pure Python code and C extensions to detect memory corruption and complex logic errors.

Rust Test Workflow

Executes and reports on Rust unit, integration, and documentation tests using a specialized subagent for structured validation.

DWARF Debug Expert

Analyzes DWARF debug files and provides expert guidance on DWARF standards (v3-v5) for binary analysis and tool development.

Active Directory Attack & Security Testing

Provides a comprehensive suite of techniques and command references for auditing and testing Microsoft Active Directory environments.

Token Integration & Security Analyzer

Performs deep security audits of smart contract tokens and protocol integrations using the Trail of Bits checklist and Slither analysis.

Audit Context Builder

Facilitates ultra-granular, line-by-line architectural analysis to build comprehensive system context for security audits.

Rails Testing

Guides developers through writing, debugging, and organizing comprehensive test suites for Ruby on Rails applications using RSpec or Minitest.

CodeQL Security Analysis

Performs deep static analysis to identify security vulnerabilities, track data flow, and perform taint analysis across complex codebases.

Rails Security Expert

Hardens Ruby on Rails applications by implementing industry-standard authentication, authorization, and vulnerability protections.

Differential Security Review

Performs deep, security-focused differential analysis on code changes to identify risks, calculate blast radius, and prevent vulnerabilities.