Security & Testing Claudeスキル

TDD Workflow

Guides the development process through the Red-Green-Refactor cycle to ensure robust, test-backed code implementation.

Red Team Security & Bug Bounty

Automates security reconnaissance and bug bounty hunting workflows using proven red team methodologies and expert tool configurations.

Clerk Authentication Integration

Simplifies the implementation of secure user authentication and session management using Clerk for modern web applications.

XSS & HTML Injection Security Testing

Performs comprehensive security audits to identify and demonstrate Cross-Site Scripting (XSS) and HTML injection vulnerabilities in web applications.

Verification Guard

Enforces a mandatory verification protocol requiring empirical evidence before claiming any task completion or code success.

API Security & Fuzzing Specialist

Guides comprehensive security assessments for REST, GraphQL, and SOAP APIs to identify vulnerabilities like IDOR, injection attacks, and authentication bypasses.

TLA+ State Animation

Visualizes TLA+ specification state transitions and model checking traces through dynamic SVG animations and terminal rendering.

Data Encryption & Security

Protects sensitive information by automating data encryption and decryption using industry-standard algorithms directly within Claude Code.

TLA+ Model Checking with TLC

Verifies TLA+ specifications using the TLC model checker to identify logic bugs, invariant violations, and temporal property failures.

Oracle Reasoning Engine

Invokes high-reasoning models to perform deep analysis, complex debugging, and architectural reviews for your codebase.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor cycle to ensure all production code is preceded by a failing test.

Shodan Reconnaissance & Pentesting

Automates network reconnaissance and vulnerability discovery using the Shodan search engine to identify exposed internet-connected devices and services.

AI-Powered E2E Testing with Browser-Use

Generates and executes end-to-end browser tests using AI-driven automation for complex user journeys and authenticated flows.

Performance Theory Tester

Executes rigorous, hypothesis-driven performance experiments with baseline validation and evidence tracking.

Claude Skill Reviewer

Validates and audits Claude Code skills and agents against architectural, implementation, and storage standards.

Build & Lint Verification

Verifies code quality and compilation for .NET and React projects to ensure production-readiness.

Full-Stack JWT Authentication

Implements secure JWT authentication and authorization flows across .NET APIs and React microfrontends.

Secure Secrets Management

Implements robust secrets management and rotation strategies across CI/CD pipelines and cloud environments to protect sensitive credentials.

Cloud Secrets Management

Implements secure handling of credentials and sensitive data within CI/CD pipelines and cloud environments.

Advanced Dependency Manager

Manages complex software dependency upgrades through compatibility analysis, staged rollout strategies, and comprehensive validation testing.

Playwright E2E Testing

Automates end-to-end browser testing for React microfrontends to ensure UI reliability and cross-device responsiveness.

Security Architecture Review

Conducts comprehensive security audits and implements robust authorization patterns based on OWASP Top 10 standards.

Systematic Debugging Strategies

Implements methodical troubleshooting techniques and root cause analysis to efficiently resolve complex software bugs across multiple tech stacks.

Python Dev Tools

Streamlines Python development using industry-standard tools for static analysis, automated testing, and IDE integration.

Bun Native Filesystem Utilities

Provides secure, token-efficient, Bun-native filesystem operations for Claude Code workflows without node:fs dependencies.

Authentication Implementation Patterns

Implements secure, industry-standard authentication and authorization patterns including JWT, OAuth2, and Role-Based Access Control.

Web Application Testing

Facilitates end-to-end testing and UI debugging of local web applications using automated Playwright scripts and managed server lifecycles.

Visual QA Testing

Performs comprehensive UI visual validation by capturing screenshot matrices across multiple states, breakpoints, and user workflows.

Web Application Testing

Automates end-to-end testing and UI debugging for local web applications using Playwright and automated server management.

Agent Governance & Security

Implements security hooks and permission controls to govern AI agent behavior and protect sensitive data.