Security & Testing Claudeスキル

PHP Code Smell Detector

Analyzes PHP codebases to identify architectural weaknesses and code smells, providing actionable refactoring recommendations to improve maintainability.

PHP Input Validation Security Check

Audits PHP code for input validation vulnerabilities and security gaps to prevent injection attacks and data corruption.

PHP Dependency Injection Auditor

Analyzes PHP codebases to identify and resolve dependency injection anti-patterns and architectural violations.

PHP Security Logging Auditor

Audits PHP applications for OWASP A09:2021 compliance by detecting log injection, PII exposure, and insufficient monitoring.

PHP Mass Assignment Security Checker

Audits PHP and Laravel codebases to identify and remediate mass assignment security vulnerabilities.

Cascading Failure Detection

Detects architectural anti-patterns in PHP systems that cause system-wide cascading failures and service instability.

PHPStan Config Generator

Generates optimized, production-ready PHPStan configurations tailored to PHP 8.4+ projects and specific architectural patterns.

PHP CSRF Security Checker

Audits PHP codebases to identify and remediate Cross-Site Request Forgery (CSRF) vulnerabilities and insecure session patterns.

PHP Insecure Design Checker

Identifies architectural security flaws and business logic vulnerabilities in PHP applications based on OWASP A04 standards.

PHP Boundary Issue Detector

Detects and fixes boundary violations, range errors, and edge-case logic bugs in PHP applications.

PHP Side Effect Analyzer

Identifies and refactors hidden side effects in PHP code to improve testability and architectural integrity.

PHP Race Condition Detector

Identifies and resolves concurrency issues, shared mutable states, and TOCTOU vulnerabilities in PHP applications.

PHP Singleton Anti-Pattern Checker

Identifies and refactors Singleton patterns, Service Locators, and global state in PHP applications to improve testability and architecture.

PHP Authentication Security Auditor

Audits PHP applications for authentication vulnerabilities, identifying weak hashing, session risks, and missing authorization checks.

PHP Infinite Loop Detector

Identifies and fixes potential infinite loops, unbounded recursion, and circular reference risks in PHP applications.

Bug Impact Analyzer

Analyzes the blast radius of code changes to identify affected dependencies, API contracts, and potential side effects before deploying fixes.

PHP Null Pointer Finder

Identifies and remediates null pointer dereference risks and unhandled nullable types in PHP applications.

PHP Pure Function Checker

Analyzes PHP codebases to identify and refactor impure functions into deterministic, side-effect-free, and highly testable code.

PHP Insecure Deserialization Checker

Detects and remediates insecure PHP deserialization vulnerabilities to prevent object injection and remote code execution.

PHPUnit Test Generator

Generates isolated, production-ready PHPUnit 11+ tests for PHP 8.4 following the AAA pattern and architectural best practices.

PHP Output Encoding Security Check

Identifies cross-site scripting (XSS) vulnerabilities and improper output encoding in PHP applications.

SOLID Violations Analyzer for PHP

Audits PHP codebases for SOLID principle violations and generates actionable architectural reports with remediation steps.

PHP Testability Architect

Analyzes PHP code to provide actionable refactoring suggestions that improve unit testability and architectural modularity.

Sensitive Data Security Scanner

Analyzes PHP codebases to identify and remediate sensitive data exposure, including secrets, credentials, and PII.

PHP Immutability Analyzer

Analyzes PHP code for immutability violations in Value Objects, Events, and DTOs to ensure architectural integrity.

PHP Bug Fix Knowledge Base

Diagnoses and resolves PHP bugs using standardized patterns and minimal intervention principles for modern architectures.

Docker Security Knowledge for PHP

Implements industry-standard Docker hardening patterns and security best practices for PHP applications.

Docker Security Scanning Knowledge

Simplifies vulnerability detection and compliance management for Docker container images with integrated tool support and SBOM generation.

PHP Test Quality Checker

Audits PHP test suites for structural integrity, naming conventions, assertion strength, and test isolation best practices.

PHP Test Data Builder Generator

Automates the creation of fluent Test Data Builders and Object Mothers for PHP 8.4 to streamline unit and integration testing.