Security & Testing Claude 技能

Dify Frontend Testing

124,859

Generates high-quality Vitest and React Testing Library tests for Dify's frontend components, hooks, and utilities.

CI Test Triager

39,933

Systematically reproduces and debugs flaky CI test failures in Next.js and Playwright environments.

Verification Loop

34,605

Standardizes code quality checks through a multi-phase verification process for builds, types, tests, and security.

Eval Harness

34,604

Implements Eval-Driven Development (EDD) to quantify AI performance and prevent regressions during coding sessions.

Security Review & Audit

34,604

Performs comprehensive security audits and implements robust defensive patterns to protect applications from common vulnerabilities and data leaks.

TDD Workflow & Test Automation

32,752

Enforces test-driven development principles to ensure 80%+ code coverage through unit, integration, and E2E testing cycles.

Python Anti-Pattern Review

27,605

Identifies and resolves common Python coding mistakes, architectural flaws, and performance bottlenecks using a comprehensive best-practices checklist.

Conductor Workflow Patterns

25,583

Implements a rigorous Test-Driven Development (TDD) workflow and phase-based verification protocol for systematic software development.

Protocol Reverse Engineering

25,583

Analyzes and documents network protocols through traffic capture, packet dissection, and binary structure identification.

Anti-Reversing Techniques

25,583

Analyzes and bypasses software protection mechanisms, including anti-debugging, obfuscation, and VM detection.

Memory Forensics Mastery

25,583

Master memory forensics techniques including memory acquisition, process analysis, and artifact extraction using Volatility 3 and advanced detection patterns.

Binary Analysis & Reverse Engineering

25,583

Analyzes compiled binaries and assembly code to reconstruct program logic and identify implementation patterns.

Web Application Testing

24,065

Automates local web application testing and browser interaction using Playwright scripts and server lifecycle management.

Kubernetes Security Policies

23,194

Implements production-grade Kubernetes security through NetworkPolicies, Pod Security Standards, and robust RBAC configurations.

Secrets Management for CI/CD

23,194

Implements secure storage, rotation, and management of sensitive credentials across various CI/CD platforms and cloud providers.

Solidity Smart Contract Security

23,194

Secures Ethereum smart contracts by implementing industry-standard protection patterns and identifying common vulnerabilities during the development process.

Memory Safety Patterns

23,194

Implements robust memory-safe programming patterns and resource management across Rust, C++, and C.

Python Testing Patterns

23,194

Implements comprehensive Python testing strategies using pytest, fixtures, and advanced mocking techniques.

JavaScript Testing Patterns

23,194

Implements comprehensive testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

WCAG Accessibility Audit & Compliance

23,194

Conducts comprehensive WCAG 2.2 accessibility audits and provides actionable remediation strategies for web content.

SAST Security Configuration

23,194

Configures and automates Static Application Security Testing (SAST) tools to detect and remediate vulnerabilities in application code.

Systematic Debugging Strategies

23,194

Applies systematic debugging techniques, profiling tools, and root cause analysis to resolve complex software issues across any technology stack.

mTLS Configuration & Management

23,194

Configures and manages mutual TLS (mTLS) for zero-trust service-to-service communication across cloud-native environments.

Screen Reader Testing

23,194

Validates web application accessibility by providing specialized guidance and command references for major screen readers like VoiceOver, NVDA, and JAWS.

STRIDE Threat Modeling Patterns

23,194

Implements the STRIDE methodology to systematically identify, categorize, and mitigate security threats in system architectures.

Threat Mitigation Mapping

23,194

Maps identified security threats to specific technical controls and mitigations to automate risk treatment and defense-in-depth planning.

Attack Tree Construction

23,194

Visualizes and analyzes potential security threat paths through systematic attack tree modeling and risk assessment.

GDPR Compliance & Data Handling

23,194

Implements GDPR-compliant data processing, granular consent management systems, and automated privacy controls within your applications.

Authentication Implementation Patterns

23,194

Implements secure authentication and authorization systems using JWT, OAuth2, session management, and role-based access control.

Web3 Smart Contract Testing

23,194

Tests smart contracts comprehensively using Hardhat and Foundry frameworks to ensure security, gas efficiency, and protocol reliability.