Security & Testing Claudeスキル

AI Remediation Patterns

Provides a prioritized framework and actionable fixes for security vulnerabilities, technical debt, and repository hygiene in audit reports.

Verification Before Completion

Enforces a strict evidence-based workflow requiring command execution and output verification before any task is claimed as complete.

Test-Driven Development

Enforces a strict Red-Green-Refactor workflow by requiring failing tests before any production code is implemented.

Systematic Debugging

Implements a rigorous four-phase debugging protocol to identify root causes and prevent regression-prone quick fixes.

Obsidian Local Backup Tester

Streamlines the local execution and validation of the Obsidian vault backup service using isolated test configurations.

Security Headers Analyzer

Audits web domain HTTP response headers to identify vulnerabilities and provide OWASP-compliant remediation configurations.

Plugin Tester for Violet

Validates and audits Violet AI plugins to ensure structural integrity, schema compliance, and content quality before deployment.

QA Engineer

Validates software implementation through automated test execution, edge case identification, and comprehensive bug reporting.

Security & Privacy Engineering

Manages security policies, privacy compliance, vendor assessments, and incident response coordination for technical organizations.

Testing Best Practices

Implements standardized testing patterns, architectural pyramids, and TDD best practices for robust software development.

Tech Lead Code Reviewer

Enforces technical standards and manages engineering workflows by validating code implementations against architectural specifications.

Bug Hunt

Performs deep, multi-layered codebase audits using parallel specialized agents to identify bugs, security vulnerabilities, and performance bottlenecks.

Linux Desktop Automation & Testing

Automates and tests native Linux desktop applications across Wayland and X11 environments using input simulation and D-Bus control.

Python Testing Specialist

Automates the creation and execution of robust Python tests using TDD, BDD, and property-based testing methodologies.

Securing Multi-Agent Systems

Implements comprehensive security frameworks and threat modeling for multi-agent AI architectures to ensure robust, compliant, and safe implementations.

PCB Design Auditor

Automates KiCad design rule checks, exports manufacturing outputs, and generates comprehensive PCB audit reports.

Requirement Traceability Validator

Validates the requirement traceability chain by reconciling system and product requirements with source code docstring tags.

Embedded Compliance Architect

Generates regulatory compliance checklists and system requirements for embedded devices based on CE, FCC, and UL standards.

Website Accessibility Auditor

Audits websites for WCAG 2.1 AA compliance and provides implementable code fixes for identified accessibility issues.

Claude Plugin Validator

Audits Claude Code plugins for structural integrity, content quality, and architectural correctness to ensure high-performance AI interactions.

JPlan Holistic Code Review

Performs comprehensive architectural and security code reviews, generating structured issue reports aligned with project requirements.

Automated Task Validator

Validates code integrity by running syntax checks, linters, type checkers, and unit tests on modified files.

SonarCloud Security Triage

Applies bulk triage decisions to SonarCloud security hotspots and vulnerabilities using CSV-based review data and API automation.

Lore Code Review

Performs structured, multi-scope code reviews using a rigorous 3-pass auditable workflow to identify security vulnerabilities and architectural flaws.

Security & Dependency Audit

Conducts comprehensive security audits of project dependencies, configurations, and sensitive files to identify and remediate vulnerabilities.

Git Diff Reviewer

Analyzes staged and unstaged Git changes to identify bugs, security risks, and incomplete code before you commit.

SonarCloud Security Audit Tool

Conducts automated security audits of SonarCloud vulnerabilities and hotspots across NASA PDS repositories and exports detailed reports for triage.

Verification Before Completion

Enforces a strict discipline of running fresh verification commands and analyzing actual output before claiming any task is finished or successful.

Rockets Runtime Diagnostics

Diagnoses and fixes startup, build, and ACL configuration issues within Rockets SDK projects.

Rockets Access Control

Implements and manages granular Access Control Lists (ACL) and Role-Based Access Control (RBAC) for secure backend services.