Security & Testing Claude 技能

Backend Tests

Guides the creation and maintenance of backend tests according to established coding standards and best practices.

Automated Code Fixer

Automatically identifies and resolves code issues across test suites, linting reports, type-checkers, and security scanners.

Verification & Quality Assurance

Ensures codebase reliability through real-time truth scoring, automated code verification, and an intelligent rollback system.

RSpec Testing Patterns

Provides comprehensive, enterprise-grade testing patterns and boilerplate for Ruby on Rails applications using RSpec and FactoryBot.

Terraform Test Expert

Validates infrastructure-as-code configurations using the native Terraform testing framework and .tftest.hcl patterns.

Root Cause Tracing

Systematically traces software bugs backward through the call stack to identify and resolve original triggers at their source.

Sandbox Security

Executes untrusted code and system commands in secure, isolated microVMs to protect the host environment.

Quality Gates

Implements multi-level quality verification procedures to ensure code security, performance, and production readiness.

Maven Build and Test Strategy

Orchestrates parallel Maven builds and intelligent test execution for complex Java and Scala projects.

Rails Implementation Safety

Enforces production-grade Ruby on Rails code quality through comprehensive safety checklists covering security, performance, and error handling.

Cloudflare Security Checker

Validates Cloudflare Workers security patterns in real-time to prevent vulnerabilities and enforce serverless best practices.

Auth Security Validator

Validates authentication and session management configurations against OWASP security standards to prevent common vulnerabilities.

ast-grep

Performs AST-based code search, linting, and structural refactoring across multiple programming languages.

Theater Code Detection

Identifies non-functional code that appears complete but lacks operational logic to ensure production reliability.

Playwright E2E Testing

Enforces standardized end-to-end testing workflows using Playwright with custom fixtures and Page Object Models.

TDD Workflow for Claude Code

Enforces a strict Red-Green-Refactor cycle for software development tasks using automated gate hooks and evidence tracking.

Python Testing Patterns

Implements professional Python testing strategies using pytest, advanced fixtures, and comprehensive mocking techniques.

Global Security

Guides AI-assisted coding to adhere to established global security standards and best practices.

Ark Chainsaw Testing

Executes and scaffolds end-to-end Ark resource tests using the Chainsaw framework and mock-LLM configurations.

Testify Go TDD Assistant

Implements Go unit tests and mocks using the Testify framework following Test-Driven Development best practices.

Framework Repair Suggester

Diagnoses framework and tooling malfunctions to propose structured, systematic repair strategies and task templates.

AST-Grep Code Search

Performs sophisticated structural code searches and architectural analysis using Abstract Syntax Tree patterns.

Web3 Smart Contract Testing

Develops and executes comprehensive test suites for Solidity smart contracts using Hardhat and Foundry frameworks.

Form Security Analyzer

Performs automated static security audits on HTML forms to identify vulnerabilities like missing CSRF protection and insecure data handling.

Code Clone Assistant

Identifies and refactors code duplication using a multi-tool approach to enforce DRY principles and reduce technical debt.

Playwright Security Runner

Automates dynamic security audits and penetration testing for web forms using browser-driven payload execution.

Kubernetes Security Policies

Implements production-grade Kubernetes security configurations including NetworkPolicies, Pod Security Standards, and RBAC to harden cluster environments.

Attack Methods Lookup

Provides detailed web vulnerability intelligence, exploit payloads, and bounty payout estimates for security auditing.

Python Testing Patterns

Implements professional testing strategies for Python applications using pytest, advanced mocking, and test-driven development best practices.

WCAG & ARIA Accessibility Lookup

Provides instant access to WCAG 2.1 AA criteria and WAI-ARIA implementation patterns with official W3C references.