Security & Testing Claudeスキル

Run Tests

Executes automated tests and performs deep coverage analysis to identify quality gaps and suggest improvements for your codebase.

Quality Review Orchestrator

Coordinates a comprehensive quality assessment by executing specialized skills for risk, testing, traceability, and non-functional requirements to generate a final quality gate decision.

TDD Feature Implementation

Executes a strict red-green-refactor Test-Driven Development cycle to implement features based on technical specifications with high test coverage.

Validate Test Reality

Validates test coverage against real-world production scenarios and identifies critical gaps between specifications and reality.

TDD Workflow

Enforces strict Test-Driven Development discipline by mandating a Red-Green-Refactor cycle for all code changes.

Code Review

Conducts structured code reviews focused on data flow, logic clarity, and security while avoiding subjective style debates.

Frontend Unit Test Generator

Automatically detects frontend testing frameworks and generates comprehensive unit tests for components, functions, and modules.

Enhanced Dependency Analyzer

Analyzes and optimizes frontend project dependencies with detailed markdown reporting and automated cleanup scripts.

Security Operations

Provides comprehensive operational security guidance for web application deployment, monitoring, and secret management.

Information Leakage Prevention

Prevents the exposure of sensitive credentials and private data by identifying hardcoded secrets and insecure logging patterns in generated code.

Authentication and Authorization Vulnerabilities

Identifies and mitigates common security defects in AI-generated authentication systems, such as insecure password hashing and broken session management.

Supply Chain Risk Management

Identifies and mitigates supply chain vulnerabilities in AI-generated code, including outdated packages, typosquatting, and dependency confusion attacks.

Rate Limiting

Protects web applications from brute force attacks, automated spam, and costly resource abuse through intelligent request frequency control.

Security Headers

Configures robust HTTP security headers to protect web applications against clickjacking, cross-site scripting (XSS), and data exfiltration.

Resource Exhaustion Security

Identifies and mitigates resource exhaustion and denial-of-service vulnerabilities in AI-generated code by implementing strict operational limits and resource-aware patterns.

Payment Security

Implement secure subscription billing and payment gating using Clerk Billing and Stripe while ensuring PCI-DSS compliance through outsourced card data handling.

CSRF Protection

Secures web applications by implementing Cross-Site Request Forgery (CSRF) protection using cryptographic token validation and secure cookie policies.

Laravel & Livewire Refactoring

Refactors Laravel and Livewire applications using modern tooling, architectural patterns, and automated quality benchmarks.

Odoo Code Reviewer

Reviews Odoo 16.0 source code for security vulnerabilities, performance bottlenecks, and compliance with OCA coding standards.

Test Skill

Retrieves and communicates sensitive credentials by orchestrating interactions between specialized secret-management agents.

AST-Grep Code Search

Executes precise, structural code searches and analysis using Abstract Syntax Tree (AST) patterns to identify complex language constructs.

Rust Code Debugger

Diagnoses and resolves Rust compiler errors, borrow-checker conflicts, and runtime panics with idiomatic solutions.

Confidence Check

Assesses implementation readiness through a multi-factor 90% confidence threshold to prevent architectural drift and redundant code.

Complete Test Coverage

Achieves 100% test coverage through progressive test writing, redundancy elimination, and automated fixture restructuring.

Verification Before Completion

Enforces rigorous build and test verification protocols before allowing AI agents to claim task completion or success.

Code Reviewer

Performs comprehensive automated code reviews to identify security vulnerabilities, performance bottlenecks, and style inconsistencies.

.NET Testcontainers & xUnit v3 Expert

Streamlines .NET integration testing by configuring Testcontainers, xUnit v3, and Moq with modern implementation patterns.

Security Code Review

Performs comprehensive security audits using source-to-sink methodology to identify vulnerabilities and provide remediation guidance.

Spec-Driven Implementation

Implements features using a rigorous TDD workflow with automated task tracking and requirement traceability.

Command Safety & Categorization Specialist

Manages and optimizes command safety classification rules to ensure secure execution and accurate documentation verification.