Security & Testing Claudeスキル

Debugging Strategies

Implements systematic debugging techniques and root cause analysis to identify and resolve complex software bugs across various technology stacks.

Root Cause Tracing

Traces software bugs systematically through the call stack to identify and resolve original triggers at the source.

Vitest Test Generator

Generates comprehensive Vitest test suites from Markdown test plans for Supabase-backed applications.

Secrets Management for CI/CD

Implements robust, automated secrets management and rotation patterns for CI/CD pipelines to secure sensitive credentials.

Defense-in-Depth Validation

Implements multi-layer data validation patterns to eliminate bugs structurally and ensure system reliability across all code paths.

Defense-in-Depth Validation

Hardens software reliability by implementing multi-layered data validation across system boundaries to eliminate structural bugs.

Probitas Run

Executes and validates Probitas test scenarios to ensure application reliability and identify regression errors.

ISMS Audit Expert

Manages Information Security Management System (ISMS) audits and ISO 27001 compliance workflows through structured control assessments and finding management.

Active Directory Attack & Security Testing

Provides a comprehensive suite of techniques and command references for auditing and testing Microsoft Active Directory environments.

Active Directory Security Auditor

Provides comprehensive guidance for evaluating and securing Microsoft Active Directory environments through authorized penetration testing techniques.

TDD Workflow & Quality Assurance

Enforces disciplined Test-Driven Development (TDD) to achieve 80%+ test coverage across unit, integration, and E2E testing layers.

Metasploit Framework Security

Automates and guides penetration testing workflows using the Metasploit Framework for vulnerability research and exploitation.

Verification Loop

Implements a multi-phase validation workflow to ensure code quality, type safety, and security before finalizing changes.

xUnit .NET Testing

Authors and optimizes xUnit v3 and v2 tests for .NET applications, including complex data-driven theories and shared fixtures.

Metasploit Framework

Streamlines penetration testing workflows by providing expert guidance on vulnerability exploitation, payload generation, and post-exploitation using the Metasploit Framework.

WordPress Security & Pentesting

Performs comprehensive security assessments of WordPress installations through automated enumeration, vulnerability scanning, and exploitation workflows.

Top 100 Web Vulnerabilities Reference

Provides a comprehensive guide to identifying, understanding, and mitigating the most critical web application security flaws.

WordPress Penetration Testing

Performs comprehensive security audits and vulnerability assessments of WordPress installations using professional penetration testing methodologies.

Gardener Session Replay

Generates deterministic session recording files and reproduction tests from Gardener TUI runtime errors.

Security Reviewer

Conducts comprehensive security audits and implements defensive coding patterns to protect applications from common vulnerabilities.

Frontend Testing for Dify

Generates Vitest and React Testing Library tests for Dify frontend components, hooks, and utilities while ensuring high code coverage.

End-to-End Test Runner

Automates the creation, maintenance, and execution of comprehensive end-to-end testing suites including CI/CD integration.

.NET Time Testing & TimeProvider Guidance

Implements reliable testing for time-dependent logic in .NET applications using the TimeProvider and FakeTimeProvider abstractions.

Deep Implement

Executes detailed development plans through a rigorous TDD workflow with integrated subagent code reviews and automated Git management.

API Test Suite Builder

Automates the creation of comprehensive API test suites by scanning route definitions across multiple web frameworks.

Systematic Debugger

Systematically investigates and resolves software bugs, errors, and unexpected behaviors using evidence-based workflows.

Maven Dependency Intelligence

Provides real-time JVM dependency analysis, security vulnerability scanning, and upgrade guidance for Maven and Gradle projects.

Data Flow Path Tracer

Analyzes and traces the movement of data from sources to sinks to ensure security, integrity, and clear data provenance.

Security Hardening for AI Usage Monitor

Strengthens the security posture of the AI Usage Monitor by enforcing strict data handling and secure communication protocols.

Badminton Mobile Playwright QA

Automates mobile-first end-to-end testing for badminton AI analysis flows using Playwright and comprehensive API mocking.