Security & Testing Claude 技能

Linter-Driven Development

Orchestrates a comprehensive development workflow for TypeScript and React by integrating design, automated testing, linting loops, and pre-commit reviews.

Refactoring

Enhances code maintainability and reduces complexity through autonomous linter-driven patterns like storifying and dependency rejection.

GDPR Compliance Scanner

Scans applications and data systems to identify GDPR compliance issues and provide actionable privacy recommendations.

Pre-Commit Design Review

Performs expert-level design analysis to detect architectural debt, primitive obsession, and abstraction issues that automated linters cannot identify.

Linter-Driven Development

Orchestrates an autonomous Go development workflow by integrating design, testing, linting, and refactoring into a continuous quality-controlled pipeline.

Smoke Test Runner

Executes automated smoke test suites to verify core application functionality and system health after deployments or updates.

Security Audit Toolkit

Performs comprehensive client-side security assessments of web applications to identify vulnerabilities and compliance issues.

SQL Injection Detector

Detects and remediates SQL injection vulnerabilities within your codebase using automated security scanning and pattern analysis.

Rust Mocking & Unit Testing

Simplifies Rust unit testing by generating mock implementations for traits and external dependencies using the mockall crate.

Compliance Report Generator

Automates the creation of professional security and regulatory compliance reports within the Claude Code environment.

Complete Test Coverage

Achieves 100% test coverage through progressive test writing, redundancy elimination, and automated fixture restructuring.

IDA Pro Plugin Packager

Streamlines the creation, validation, and distribution of IDA Pro plugins for the Hex-Rays Plugin Manager.

SSE Event Router Testing

Automates the validation of Server-Sent Events (SSE) endpoints and real-time streaming logic in Hono.js applications.

Security Code Review

Performs comprehensive security audits using source-to-sink methodology to identify vulnerabilities and provide remediation guidance.

Odoo Code Reviewer

Reviews Odoo 16.0 source code for security vulnerabilities, performance bottlenecks, and compliance with OCA coding standards.

Input Validation Security

Protects applications by implementing exhaustive validation at trust boundaries and mitigating common injection vulnerabilities.

Style Audit

Audits and rewrites code to align with CI/CD style rules, quality guidelines, and best practices while preserving functional correctness.

Theater Detection Audit

Identifies and replaces placeholder code, mock data, and incomplete implementations with production-ready logic to ensure codebase integrity.

NestJS Authentication

Implements secure and idiomatic authentication and authorization systems in NestJS applications using JWT, guards, and role-based access control.

Node.js Jest Testing

Implements comprehensive testing suites for Node.js applications using Jest, covering unit tests, mocking, and API integration.

JWT Authentication for Node.js

Implements secure JSON Web Token authentication with refresh token logic and role-based access control for Node.js applications.

Adversarial Fingerprint Testing

Validates Pivot pipeline fingerprinting by identifying code changes that bypass cache invalidation logic.

Defense-in-Depth Validation

Implements multi-layered data validation strategies to eliminate deep-system failures and make bugs structurally impossible.

CCG Code Guardian

Enhances development workflows with persistent memory, automated security guarding, and multi-agent coordination for complex repositories.

Code Verification Loop

Establishes a comprehensive multi-stage validation system to ensure code quality, security, and stability before production deployment or PR submission.

Quality Review Orchestrator

Coordinates a comprehensive quality assessment by executing specialized skills for risk, testing, traceability, and non-functional requirements to generate a final quality gate decision.

IDA Pro Headless Analysis

Performs automated binary analysis and reverse engineering using IDA Pro's modern Pythonic Domain API.

Validate Test Reality

Validates test coverage against real-world production scenarios and identifies critical gaps between specifications and reality.

C Memory Safety & Security

Safeguards native C code by enforcing memory safety patterns, bounds checking, and preventing common vulnerabilities like buffer overflows.

Mobile Responsive Testing

Automates comprehensive UI responsiveness checks across multiple device breakpoints and touch interaction standards.