Security & Testing Claude 技能

Web3 Smart Contract Testing

Validates Solidity smart contracts through comprehensive Hardhat and Foundry test suites, including mainnet forking and fuzzing.

BAP Identity Management

Manages Bitcoin Attestation Protocol (BAP) identities and encrypted backups using specialized command-line tools.

Web3 Smart Contract Testing

Facilitates comprehensive smart contract testing using Hardhat and Foundry frameworks to ensure security, efficiency, and reliability in blockchain protocols.

Route Tester & Auth Validator

Automates the testing and validation of authenticated API routes using cookie-based JWT authentication and Keycloak integration.

Auth & Security Code Reviewer

Performs deep security audits of authentication and authorization logic, ensuring compliance with OAuth 2.1, JWT standards, and MCP protocols.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to ensure data integrity and prevent structural software bugs.

Security Core

Implements comprehensive application security layers including robust authentication, granular authorization, and OWASP-compliant hardening for modern software stacks.

Reticulum Protocol Links

Provides expert knowledge for implementing and managing Reticulum's encrypted, anonymous communication links with forward secrecy.

Reticulum Protocol Destinations

Manages and implements Reticulum's location-independent addressing system and cryptographic destination types.

SAST Configuration & Security Scanning

Configures and optimizes static application security testing tools to automate vulnerability detection in source code.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary timeouts with smart condition polling for actual state changes.

Reticulum Cryptography & Identity

Implements and explains Reticulum's authoritative cryptographic primitives, identity structures, and forward-secrecy mechanisms.

Kubernetes Security Policies & Hardening

Implements production-grade Kubernetes security configurations including network isolation, RBAC, and pod security standards.

Reticulum Utilities

Manages Reticulum network operations including path discovery, identity management, and secure file transfers.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

Compliance Architecture Expert

Designs enterprise-grade, compliant cloud architectures for SOC 2, HIPAA, GDPR, and PCI-DSS standards.

GitHub Pull Request Reviewer

Automates comprehensive code reviews by creating isolated git worktrees and providing structured analysis across security, quality, and performance.

Security Requirement Extractor

Transforms threat models and business context into actionable, testable security requirements and structured user stories.

Competitive Analysis Quality Assurance

Validates the accuracy, consistency, and source integrity of competitive research deliverables to ensure they meet enterprise consulting standards.

Screen Reader Testing

Validates web application accessibility through structured testing protocols for VoiceOver, NVDA, JAWS, and TalkBack.

NASA Power of 10 & SOLID Code Reviewer

Conducts automated, safety-critical code reviews based on NASA Power of 10 rules, SOLID principles, and strict embedded C standards.

Kubernetes Security Policies

Implements production-grade Kubernetes security through NetworkPolicies, Pod Security Standards, and least-privilege RBAC.

Fabric for Claude Code

Executes 240+ specialized Fabric patterns natively within Claude Code for advanced content processing, security analysis, and wisdom extraction.

E2E Testing Patterns

Implements robust end-to-end testing strategies using Playwright and Cypress to ensure web application reliability and catch regressions.

CasePilot: Smart Test Case Generator

Automates the generation of comprehensive Markdown-based test cases and mind maps from requirement documents and technical designs.

Claude Hookify Rule Generator

Enables Claude to create and manage Hookify rules for automated project governance, safety checks, and coding standards.

Bats Shell Testing Patterns

Implements comprehensive Bash Automated Testing System (Bats) patterns for robust, production-grade shell script verification.

E2E Testing Patterns

Implement reliable end-to-end test suites using Playwright and Cypress to ensure robust application workflows and catch regressions.

Bats Testing Patterns

Master the Bash Automated Testing System (Bats) to create robust, production-grade unit tests for shell scripts and CI/CD pipelines.

Bats Shell Testing Patterns

Implements comprehensive unit tests and automated test suites for shell scripts using the Bash Automated Testing System (Bats).