Security & Testing Claude 技能

Kiro Spec Detector

Identifies modified Kiro specification files by comparing current branch changes against a base branch for optimized testing.

Database Security Scanner

Performs comprehensive security audits and vulnerability assessments for PostgreSQL and MySQL databases using OWASP guidelines.

Security Misconfiguration Finder

Audits infrastructure-as-code and application configurations to proactively identify and remediate security vulnerabilities.

Performance Test Suite

Automates the design, execution, and analysis of load, stress, and endurance tests to identify system bottlenecks and optimize application performance.

Mutation Test Runner

Validates test suite quality by introducing code mutations and measuring the detection effectiveness of existing test cases.

Code Health Auditor

Analyzes codebases to identify technical debt, test coverage gaps, and refactoring opportunities across multiple languages.

PICT Test Designer

Generates optimized pairwise test suites by analyzing requirements and code logic using the PICT methodology.

Test Doubles Generator

Automates the creation of mocks, stubs, spies, and fakes to isolate dependencies and accelerate unit testing workflows.

CSRF Protection Validator

Audits web application endpoints and cookie configurations to detect and remediate Cross-Site Request Forgery (CSRF) vulnerabilities.

Access Control Auditor

Audits access control configurations to identify security vulnerabilities, misconfigurations, and privilege escalation risks in IAM policies and network ACLs.

KrakenD Security Auditor

Performs comprehensive security audits and vulnerability scanning for KrakenD API Gateway configurations to ensure production readiness.

Input Validation Scanner

Scans source code to detect and mitigate input validation vulnerabilities like SQL injection and XSS.

Security Headers Analyzer

Analyzes website HTTP security headers to identify vulnerabilities and provide actionable improvement recommendations.

Speck PR Reviewer

Conducts systematic GitHub pull request reviews with VSCode integration, logical file clustering, and automated comment management.

Testing Guidelines

Enforces rigorous testing standards including strict assertions, minimal mocking, and clear naming conventions for high-quality test suites.

Precommit Build Validator

Validates code changes by running precommit checks, automated builds, and battery-aware test suites.

Elixir Testing with ExUnit

Writes comprehensive, production-grade test suites for Elixir applications using ExUnit, Mox, and property-based testing patterns.

Session Security Checker

Audits and secures session management implementations within your codebase to prevent vulnerabilities like session fixation and hijacking.

Test Environment Manager

Orchestrates and manages isolated, reproducible test environments using Docker Compose and Testcontainers.

Bats Shell Testing Patterns

Provides comprehensive patterns and best practices for writing automated unit tests for shell scripts using the Bats framework.

Web Application Testing

Tests local web applications using Playwright scripts with automated server lifecycle management and DOM inspection capabilities.

Test Environment Manager

Orchestrates isolated, reproducible test environments using Docker Compose and Testcontainers to streamline software testing workflows.

Integration Test Runner

Automates the setup, execution, and cleanup of integration test suites including database orchestration and service management.

Bible Widget Testing Assistant

Automates the validation and testing of embeddable Bible widgets, ensuring accurate scripture reference parsing and audio integration.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure reliable user journeys and zero regressions.

Nixtla Test Generator

Generates comprehensive pytest suites from functional requirements to automate test scaffolding for Nixtla-based plugins and pipelines.

Security Test Scanner

Automates comprehensive security vulnerability scans and penetration tests for applications and APIs using OWASP standards.

Test Data Generator

Generates realistic, schema-compliant test data to populate databases and simulate user behavior for comprehensive software testing.

.NET Unit Testing Patterns

Implements standardized unit testing architectures for .NET applications using xUnit, Moq, and FluentAssertions.

Assertion Helper

Generates precise, context-aware assertions for unit and integration tests by analyzing function logic and data structures.