Security & Testing Claudeスキル

HardStop Shell Safety

Protects your system by intercepting and validating AI-generated shell commands and file access before execution.

Cloudflare Tunnel & Access Auth

Authenticates HTTP requests through Cloudflare Zero Trust and Tunnel using Service Token headers.

Software Engineering Auto-Verify

Prompts systematic verification for complex software engineering tasks to ensure code reliability, security, and logical correctness.

Security Audit & RLS Validation

Enforces application safety by validating Row Level Security (RLS) policies, auditing authentication routes, and performing automated vulnerability scanning.

OpenSpec Change Verifier

Validates code implementations against specifications, tasks, and design documents to ensure completeness and correctness before archiving.

Accessibility Checker

Validates web content for WCAG compliance and ensures inclusive user experiences through automated audits and best practice implementation.

Python Security Scanner

Performs comprehensive security audits and vulnerability scans for Python web applications and scripts to identify OWASP risks and insecure patterns.

Secrets Detector

Scans source code and Git history to identify and mitigate hardcoded secrets, API keys, and credentials.

Vulnerability Scanner

Scans codebases for security vulnerabilities, identifies CVE patterns, and provides severity-based remediation guidance.

Dependency Auditor

Scans and remediates security vulnerabilities across multiple package managers to secure your project's software supply chain.

Test Coverage Analyzer

Analyzes test coverage reports to identify testing gaps and provides prioritized recommendations for improving software quality.

Docker Image Security Scanner

Identifies and remediates vulnerabilities, outdated packages, and security misconfigurations in Docker images.

AWS Security Group Analyzer

Audits AWS security groups to identify overly permissive rules and improve network security posture.

Test Data Generator

Generates high-quality test fixtures, mock data, and complex test scenarios to streamline unit and integration testing across multiple languages.

OpenSpec Implementation Verifier

Validates that code implementations align with requirements, tasks, and design specifications before finalizing changes.

Test Fixture Generator

Generates high-fidelity synthetic test data and edge cases for robust ETL pipeline and database testing.

ETL Testing Patterns

Provides Pytest templates and best practices for validating ETL pipelines through unit, integration, and data quality tests.

Binary Analysis

Analyzes binary files to identify malicious behavior, perform decompilation, and generate detailed threat assessment reports.

Human-in-Loop End-User Testing

Executes structured Setup/Action/Assert verification sequences with mandatory human checkpoints to validate real infrastructure behavior.

SSL/TLS Configuration Helper

Configures secure SSL/TLS certificates and implements web security hardening patterns for Nginx servers.

API Security Checker

Audits backend APIs to identify and remediate OWASP Top 10 vulnerabilities, authentication flaws, and authorization issues.

LLM Evaluation & Testing

Implements systematic evaluation patterns and metrics to measure LLM performance, validate prompt quality, and detect hallucinations.

Rails Testing with Minitest

Implements rigorous Test-Driven Development (TDD) using Minitest and Rails-native patterns to ensure high-quality, maintainable codebases.

Scientific Python Testing

Implements robust testing suites for scientific Python projects using pytest and industry-standard numerical validation patterns.

Zigbee Unified Test Harness (ZUTH)

Streamlines the setup, configuration, and execution of Zigbee Unified Test Harness (ZUTH) for official Zigbee 3.0 certification testing.

Fix Validation Protocol

Enforces a scientific four-step workflow to verify code changes through observed behavior rather than the mere absence of errors.

Perl Script Validator

Validates Perl scripts for syntax accuracy, security vulnerabilities, and adherence to industry best practices.

Bash Testing

Streamlines shell script validation by providing standardized patterns and frameworks for unit testing and behavior-driven development.

Spec-Driven Implementation Phase

Executes development tasks through a rigorous Test-Driven Development (TDD) workflow featuring automated quality gates and anti-duplication checks.

Dependency Conflict Resolver

Resolves package manager dependency conflicts and security vulnerabilities across multiple languages before installation occurs.