Can it detect security vulnerabilities?

Yes, it integrates OWASP dependency checks for known CVEs and scans the source code for hardcoded secrets and risky API patterns.

How does it handle integration testing?

It utilizes Testcontainers to run tests against real databases like PostgreSQL instead of in-memory mocks, ensuring high-fidelity testing.

Does it track code coverage?

Absolutely. It uses JaCoCo to generate coverage reports and encourages verifying that code meets defined coverage thresholds (typically 80%+).

Does this skill support both Maven and Gradle?

Yes, it provides standardized command patterns and configurations for both Maven and Gradle build systems.

Spring Boot Verification Loop

Name: Spring Boot Verification Loop
Author: saar120

bysaar120

0•

セキュリティとテスト

Automates a comprehensive verification pipeline for Spring Boot applications including building, testing, static analysis, and security auditing.

This skill provides a structured framework for validating Spring Boot projects before pull requests or deployments. It guides Claude through a multi-stage verification loop: performing multi-threaded builds, running static analysis tools like SpotBugs and Checkstyle, executing unit and integration tests with Testcontainers and MockMvc, conducting security scans for CVEs and hardcoded secrets, and finally generating a detailed report to ensure code quality and production readiness.

主な機能

01Security auditing for dependency CVEs and exposed secrets

02Multi-stage pipeline: Build, Analyze, Test, Secure, and Review

03Static analysis automation with SpotBugs, PMD, and Checkstyle

040 GitHub stars

05Advanced testing patterns using Testcontainers for real database integration

06Standardized output templates for clear 'Ready/Not Ready' status reporting

ユースケース

01Pre-PR validation to ensure no regressions or style violations are introduced

02Automated quality gates for mission-critical Spring Boot microservices

03Dependency upgrade verification to check for breaking changes and security vulnerabilities

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add saar120/skillgate-registry springboot-verification

For use in Claude.ai and ChatGPT

主な機能

01Security auditing for dependency CVEs and exposed secrets

02Multi-stage pipeline: Build, Analyze, Test, Secure, and Review

03Static analysis automation with SpotBugs, PMD, and Checkstyle

040 GitHub stars

05Advanced testing patterns using Testcontainers for real database integration

06Standardized output templates for clear 'Ready/Not Ready' status reporting

ユースケース

01Pre-PR validation to ensure no regressions or style violations are introduced

02Automated quality gates for mission-critical Spring Boot microservices

03Dependency upgrade verification to check for breaking changes and security vulnerabilities

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add saar120/skillgate-registry springboot-verification

For use in Claude.ai and ChatGPT