Security & Testing Claude 技能

Go Test Coverage Analysis

Optimizes Go application reliability by analyzing test coverage and implementing strategic improvement patterns.

Kubernetes Security Policies

Implements robust, production-grade security controls for Kubernetes clusters including network isolation, RBAC, and pod security standards.

STRIDE Security Analysis Patterns

Systematically identifies security threats and designs mitigations using the industry-standard STRIDE methodology.

Infrastructure Compliance Checker

Automates infrastructure security audits against industry standards including SOC2, HIPAA, and PCI-DSS to identify and remediate configuration gaps.

Solidity Proxy Patterns

Provides expert guidance and implementation patterns for building upgradeable Ethereum smart contracts using UUPS, Transparent, and Beacon proxies.

Threat Mitigation Mapping

Maps identified security threats to specific controls and architectural mitigations to ensure comprehensive system protection.

Solidity Security Audit

Conducts comprehensive security reviews and audits for Solidity smart contracts using industry-standard methodologies and automated tools.

Solidity Upgrade Safety

Ensures secure smart contract upgrades by enforcing storage layout integrity and initializer protection protocols.

Testcontainers Integration Testing

Simplifies Docker-based integration testing by orchestrating ephemeral databases and services directly from code.

Authentication & Access Control Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and role-based access control (RBAC).

Design-by-Contract Developer

Implements formal contract verification using preconditions, postconditions, and invariants across multiple programming languages to ensure code reliability.

TypeScript & Vitest Testing Patterns

Implements professional unit testing patterns and best practices for TypeScript projects using the Vitest framework.

Solidity Testing Patterns

Implements comprehensive smart contract test suites using industry-standard patterns for Foundry and Hardhat.

Playwright E2E Testing Setup

Configures robust end-to-end testing environments using Playwright for React applications.

Access Control Auditor

Audits and identifies vulnerabilities in access control configurations, IAM policies, and network permissions to ensure security compliance.

Dependency Security

Performs comprehensive security audits and vulnerability scanning for npm-based JavaScript projects.

Compliance Report Generator

Automates the creation of professional security compliance reports and regulatory documentation for major industry standards.

Plan Validation & Scoring

Validates AI-generated development plans through adversarial challenges and quantitative confidence scoring to ensure production readiness.

Visual Regression Testing for React

Automates UI visual consistency checks using Playwright and Percy to detect unintended layout or style changes across browsers and devices.

API Security Fuzzer

Performs automated fuzz testing on REST APIs to identify security vulnerabilities, boundary value issues, and unexpected behavior.

Reflective Verification

Implements a systematic reflection methodology to verify task completion and ensure engineering precision through rigorous quality assurance.

Node.js API Integration Testing

Implements robust API integration testing using Supertest and Vitest for Node.js backend services.

Bitcoin Auth Diagnostics

Diagnoses and resolves authentication failures, signature verification errors, and token generation issues within the bitcoin-auth ecosystem.

React Component Testing

Implements robust unit and integration tests for React components using Vitest and React Testing Library.

Image Accessibility & SEO Checker

Analyzes and validates web page images for accessibility compliance, SEO optimization, and performance best practices.

Solidity Coverage Analysis

Analyzes and improves Solidity smart contract test coverage using industry-standard metrics and framework-specific strategies.

Go Post-Change Verification

Enforces a mandatory quality assurance protocol for Go projects through automated formatting, linting, building, and testing sequences.

Web Link & Navigation Auditor

Analyzes and validates website links and buttons to identify broken navigation, accessibility gaps, and SEO-damaging code patterns.

Vitest Mocking Strategies

Implements advanced mocking patterns and best practices for Vitest to isolate units and simulate external dependencies.

Web Application Testing Toolkit

Facilitates end-to-end testing and UI debugging for local web applications using Python Playwright scripts and automated server management.