What security checks are included?

The verification loop includes OWASP dependency checks for CVEs, secret scanning in source code/git history, and checks for common anti-patterns like wildcard CORS or raw exception messages.

How does it handle integration testing?

It provides standardized patterns for using Testcontainers (e.g., PostgreSQL) to run tests against real databases and MockMvc for controller-layer validation.

Can I use this for test coverage enforcement?

Yes, it integrates with JaCoCo to generate reports and verify that your code meets specific line and branch coverage thresholds, typically 80% or higher.

Does this skill support both Maven and Gradle?

Yes, the skill includes specific commands and configurations optimized for both Maven and Gradle build systems.

Spring Boot Verification Loop

Name: Spring Boot Verification Loop
Author: flatrick

byflatrick

0•

セキュリティとテスト

Automates a comprehensive verification pipeline for Spring Boot applications, including builds, tests, security scans, and code quality checks.

The Spring Boot Verification Loop skill provides a rigorous, multi-phase validation framework for Spring Boot projects. It guides Claude through essential pre-release checks, covering everything from dependency builds and static code analysis to integration testing with Testcontainers and OWASP security scans. By standardizing these checks, the skill ensures that code changes are performant, secure, and production-ready before they ever reach a pull request, helping developers maintain high standards for enterprise Java applications.

主な機能

01Automated JaCoCo coverage reporting and verification reports

02Security auditing via OWASP dependency-check and secret scanning

03Support for both Maven and Gradle build systems

04Multi-phase validation covering build, static analysis, testing, and security

05Integration testing patterns using Testcontainers and MockMvc

060 GitHub stars

ユースケース

01Pre-deployment security auditing and dependency vulnerability scanning

02Major refactoring safety checks for Spring Boot microservices

03Pre-PR validation to ensure zero regressions and high test coverage

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add flatrick/mdt springboot-verification

For use in Claude.ai and ChatGPT

主な機能

01Automated JaCoCo coverage reporting and verification reports

02Security auditing via OWASP dependency-check and secret scanning

03Support for both Maven and Gradle build systems

04Multi-phase validation covering build, static analysis, testing, and security

05Integration testing patterns using Testcontainers and MockMvc

060 GitHub stars

ユースケース

01Pre-deployment security auditing and dependency vulnerability scanning

02Major refactoring safety checks for Spring Boot microservices

03Pre-PR validation to ensure zero regressions and high test coverage

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add flatrick/mdt springboot-verification

For use in Claude.ai and ChatGPT