Security & Testing Claude 技能

QA Validation & Acceptance Testing

Validates code implementations against specific test cases and acceptance criteria to ensure functional correctness and production readiness.

LimaCharlie Threat Hunter

Conducts proactive threat investigations and builds hypothesis-driven hunts within the LimaCharlie SecOps platform.

Unit Test Generation Agent

Generates comprehensive, high-coverage unit tests for functions, React components, and hooks across multiple testing frameworks.

Kubernetes Security Policy Expert

Implements defense-in-depth security for Kubernetes clusters using Network Policies, RBAC, and Pod Security Standards.

Debugging Strategies & Root Cause Analysis

Provides a systematic framework for investigating, isolating, and resolving software bugs across various technology stacks using proven scientific methodologies.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary timeouts with smart condition polling for asynchronous state changes.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

Bats Shell Testing Patterns

Implements production-grade unit testing for shell scripts using the Bash Automated Testing System (Bats).

Web3 Smart Contract Testing

Tests smart contracts comprehensively using Hardhat and Foundry to ensure security, gas efficiency, and protocol reliability.

Solidity Security & Smart Contract Audit

Implements industry-standard security patterns and vulnerability prevention for Solidity smart contracts.

Error Detective

Implements a systematic TRACE framework to identify, analyze, and resolve complex software errors efficiently.

.NET Test Runner

Executes .NET unit tests, generates code coverage reports, and runs performance benchmarks using the dotnet CLI.

Code Reviewer

Performs automated code reviews with security scanning, quality metrics, and performance analysis to ensure production-grade code.

Defense-in-Depth Validation

Enforces a multi-layered validation strategy across application layers to make structural bugs impossible and ensure data integrity.

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries to make software bugs structurally impossible to reproduce.

Skill Reviewer and Enhancer

Audits and improves Claude Code skills to ensure adherence to official best practices and modern architectural patterns.

Web Security Standards

Enforces domain security protocols and research methodologies for managing WebFetch permissions and domain trustworthiness.

AI Slop Detector

Audits codebases to identify and remediate low-quality AI-generated patterns, security vulnerabilities, and hallucinated dependencies.

JavaScript Unit Testing Standards

Enforces standardized Jest unit testing patterns, configuration, and coverage requirements for CUI JavaScript projects.

Claude Code Permission Management

Validates and secures Claude Code settings through architectural patterns and security anti-pattern detection.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within your development workflow.

Test-Driven Development (TDD) Guardrails

Enforces a rigorous Red-Green-Refactor workflow by requiring failing tests before any implementation code is written.

PCI Compliance & Secure Payments

Implement PCI DSS compliance requirements and secure payment card data handling practices within your applications.

Web3 Smart Contract Testing

Validates smart contracts through comprehensive testing suites using Hardhat and Foundry to ensure security, gas efficiency, and protocol reliability.

Error Handling Patterns

Implements robust error handling strategies and resilient application patterns across multiple programming languages to ensure software stability.

Web Application Testing

Automates local web application testing and UI verification using Playwright and integrated server management tools.

E2E Testing Patterns

Implements robust end-to-end testing architectures using Playwright and Cypress to ensure application reliability and prevent regressions.

Subagent Skill Testing

Validates and bulletproofs Claude skills using a Red-Green-Refactor cycle and high-pressure subagent scenarios.

CI/CD Secrets Management

Implements secure handling, storage, and rotation of sensitive credentials across major CI/CD platforms and cloud providers.

Supabase E2E Test Scenarios

Automates end-to-end testing for Supabase applications, covering authentication, database operations, realtime features, and AI-powered vector searches.