Security & Testing Claude 技能

JUnit Core Testing Standards

Implements professional JUnit 5 testing patterns and coverage standards for high-quality Java applications.

Web3 Smart Contract Testing

Develops and executes comprehensive test suites for Solidity smart contracts using Hardhat and Foundry frameworks.

Professional Code Review

Conducts systematic, checklist-based code reviews to identify security risks, type safety issues, and architectural improvements before committing.

Security Engineer

Implements robust security best practices and protection patterns across the entire application stack.

clj-kondo Clojure Linter

Analyzes Clojure source code to detect syntax errors, enforce best practices, and implement domain-specific linting rules through custom hooks.

Automated Browser UI Verification

Verifies UI changes automatically in a real browser to ensure frontend integrity and catch visual regressions during development.

Local E2E Testing Workflow

Automates full-stack E2E testing by integrating local frontend and backend services without using mock data.

Kubernetes Security Policies

Implements production-grade Kubernetes security configurations including NetworkPolicies, Pod Security Standards, and RBAC to harden cluster environments.

Python Testing Patterns

Implements professional testing strategies for Python applications using pytest, advanced mocking, and test-driven development best practices.

Verification & Quality Assurance

Ensures codebase reliability through real-time truth scoring, automated code verification, and an intelligent rollback system.

E2E Testing Patterns

Master end-to-end testing with Playwright and Cypress to build reliable, bug-free web applications and automated test suites.

Framework Repair Suggester

Diagnoses framework and tooling malfunctions to propose structured, systematic repair strategies and task templates.

Radare2 Binary Analysis

Integrates radare2's powerful reverse engineering and binary analysis capabilities directly into Claude via the Model Context Protocol.

React Native Testing Master

Implements comprehensive testing strategies for React Native apps including unit, component, and E2E tests.

Auth Implementation Patterns

Implements secure authentication and authorization systems using modern patterns like JWT, OAuth2, and RBAC.

JavaScript Testing Patterns

Implements robust testing architectures using Jest, Vitest, and Testing Library for JavaScript and TypeScript applications.

Bats Shell Testing Patterns

Provides comprehensive guidance and implementation patterns for writing robust unit tests for shell scripts using the Bash Automated Testing System.

React Accessibility Auditor

Performs comprehensive WCAG 2.1 Level AA accessibility compliance reviews and automated testing for React components.

Claude Permission Manager

Automates the configuration of granular Claude Code permissions to enable seamless Git and GitHub operations while blocking destructive commands.

FTC Security Review

Audits FTC robot code and scripts for security vulnerabilities, credential leaks, and unsafe file operations.

Form Security Analyzer

Performs automated static security audits on HTML forms to identify vulnerabilities like missing CSRF protection and insecure data handling.

Playwright Security Runner

Automates dynamic security audits and penetration testing for web forms using browser-driven payload execution.

Attack Methods Lookup

Provides detailed web vulnerability intelligence, exploit payloads, and bounty payout estimates for security auditing.

Automated Testing & QA Runner

Executes comprehensive unit and browser-based end-to-end tests to validate code changes and ensure UI stability.

WCAG & ARIA Accessibility Lookup

Provides instant access to WCAG 2.1 AA criteria and WAI-ARIA implementation patterns with official W3C references.

SDD Feature Implementer

Guides feature development through a strict Spec Driven Development (SDD) workflow to ensure high test coverage and code quality.

NVD CVE Vulnerability Search

Searches the NIST National Vulnerability Database to identify security vulnerabilities and assess risk scores for software components.

Solidity Security

Implements secure smart contract patterns and audits Solidity code to prevent common blockchain vulnerabilities and exploits.

SAST Security Runner

Automates static application security testing using Semgrep to identify vulnerabilities, security anti-patterns, and OWASP Top 10 issues.

Mock Orchestrator

Simulates a multi-layered agent architecture to test thinking token capture and skill orchestration across complex workflows.