Security & Testing Claude 技能

Authentication Handler

Manages secure authentication, authorization, and user sessions using standardized API wrappers and frontend hooks.

Bug Fix Plan Critic

Evaluates and scores proposed bug fix plans to ensure technical correctness, completeness, and risk mitigation.

MoAI TRUST Enterprise Quality Framework

Enforces the TRUST 4 principles—Test First, Readable, Unified, and Secured—to ensure production-grade software quality and enterprise governance.

Professional Code Reviewer

Performs in-depth code quality analysis and provides actionable, structured feedback to improve maintainability, security, and performance.

Security Compliance & Scanning

Automates security audits, vulnerability scanning, and compliance validation for software development workflows.

TDD Workflow Pro

Enforces the Red-Green-Refactor cycle to ensure test-first development and high code quality.

Security & Compliance Validator

Protects applications by automating security audits, vulnerability scanning, and environment compliance checks.

Anthropic Web Testing

Facilitates end-to-end testing and interaction with local web applications using Playwright scripts and automated server management.

Scale Game Problem Solver

Identifies architectural bottlenecks and hidden edge cases by stress-testing software logic at extreme scales.

Code Testing & TDD Suite

Generate and run unit and integration tests using pytest and Jest with support for mocks, fixtures, and coverage reporting.

TDD Wada Style

Implements high-quality software using the Red-Green-Refactor cycle and behavior-driven test patterns inspired by Takuto Wada's philosophy.

Skill Evaluator

Evaluates Claude Code skills against best practices to ensure high quality, optimal structure, and effective prompt engineering.

AI Council Debugger

Diagnoses complex software bugs and identifies root causes by orchestrating parallel analysis from multiple high-reasoning AI models.

Playwright Browser Automation

Automates end-to-end browser testing and web interactions using the modern Playwright framework for reliable web application validation.

Playwright Testing Framework

Automates end-to-end browser testing and web automation across Chromium, Firefox, and WebKit with native WSL2 support.

Authentication & Authorization Patterns

Implements secure access control systems using JWT, OAuth2, RBAC, and session management patterns.

Debugging Strategies

Master systematic debugging techniques and root cause analysis to efficiently track down bugs across any technology stack.

Security Compliance & Vulnerability Scanner

Automates security validation, vulnerability scanning, and compliance auditing to ensure secure software development cycles.

Debugging Strategies

Master systematic troubleshooting techniques and root cause analysis to efficiently resolve complex bugs and performance bottlenecks across any technology stack.

Authentication & Authorization Patterns

Implements robust security systems using modern patterns like JWT, OAuth2, session management, and role-based access control.

Automated Testing & QA

Generates and runs comprehensive test suites with automated coverage reporting and documentation-backed best practices.

Security Remediation Library

Provides a centralized index of security remediation guides to help developers fix injection, cryptography, authentication, and configuration vulnerabilities.

Authentication & Authorization Patterns

Implements secure, industry-standard access control systems including JWT, OAuth2, and role-based permissions.

Scale Game Architect

Validates software architecture by simulating behavior at extreme scales to uncover hidden bottlenecks and production edge cases.

Authentication Management

Secures and manages authentication flows between Laravel Sanctum backends and Next.js frontends while preventing environment configuration leaks.

Security & Compliance Checklist

Applies comprehensive security audits and OWASP-aligned checks to identify vulnerabilities in application code and architecture.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary timeouts with condition polling to wait for actual state changes.

Remediation: Injection Vulnerabilities

Provides actionable code patterns and best practices to fix SQL injection, command injection, and cross-site scripting (XSS) across multiple programming languages.

Python Dependency Updater

Maintains Python project health by auditing security vulnerabilities and managing version compatibility in pyproject.toml.

Verified Completion Gate

Enforces rigorous verification protocols by requiring fresh command evidence before any task is marked as complete or fixed.