Security & Testing Claude 技能

Full Stack Debugger

Identifies and resolves complex software issues across UI, backend, and database layers using a systematic, iterative debugging workflow.

AI Code Reviewer

Performs systematic code audits to identify security vulnerabilities, logic bugs, and maintainability issues with actionable feedback.

Story-Driven Acceptance Testing

Guides Product Owners through manual verification steps to validate features before they are merged into production.

LangGraph SITNOVA Security Automation

Implements stateful AI operator flows for automated security gate systems using the LangGraph framework and real-time OCR integrations.

Report Bug

Generates and submits professionally formatted GitHub Issues directly from the development environment, complete with reproduction steps, technical analysis, and recommended E2E tests.

Global Validation

Implements comprehensive, multi-layered input validation and sanitization to ensure data integrity and prevent security vulnerabilities across all application entry points.

Global Coding Style

Enforces consistent formatting, naming conventions, and type safety across PHP and TypeScript environments while automating code quality standards.

Frontend Accessibility

Implements inclusive user interfaces using semantic HTML, WCAG-compliant color contrast, and robust keyboard navigation.

Dead Code Finder

Identifies and removes unused code, commented blocks, unreachable paths, and redundant imports to streamline codebase maintainability.

Frontend Quality Assurance

Automates comprehensive UI testing and bug discovery using browser automation to ensure high-quality frontend deployments.

Python Testing

Implements robust Python testing suites using pytest, focusing on isolated test design, mocking external dependencies, and asynchronous execution patterns.

Testing & Test Writing

Develops strategic, behavior-focused unit and end-to-end tests using Vitest and Playwright to ensure robust application functionality and reliability.

Safety Memory

Implements specific coding standards and protocols for managing safety memory within agentic environments.

Testing Skills

Verifies and bulletproofs process documentation by applying Red-Green-Refactor cycles through realistic pressure scenarios.

Collect Selector

Identifies or generates the optimal data-testid selector for Playwright end-to-end testing based on a strict priority hierarchy.

Systematic Debugging

Implements a disciplined, four-phase methodology to identify and resolve the root causes of technical issues through structured investigation and hypothesis testing.

Safety Verification

Ensures adherence to safety standards and verification protocols during code generation and modification.

Registry Publishing Test Skill

Validates production registry publishing workflows including packaging, indexing, and installation processes.

Security Orchestrator

Conducts comprehensive security vulnerability assessments by performing deep architectural analysis of codebases to identify risks and compliance issues.

Skill Quality Gate

Validates Claude Code skill structure and content against standardized quality requirements before deployment.

Ruby Community Style

Implements idiomatic Ruby patterns and strict structural guidelines based on the RuboCop Community Ruby Style Guide and Sandi Metz rules.

PHP Test Writer

Generates and refactors structured PHP tests for Laravel applications using project-specific conventions and best practices.

Hashing Passwords

Enforces industry-standard security protocols for credential handling and password hashing to prevent critical authentication vulnerabilities.

Task Module Testing

Automates the planning, implementation, and verification of unit and integration tests across multiple programming domains.

LimaCharlie YARA Manager

Simplifies the creation, testing, and deployment of YARA rules for automated malware detection and memory scanning within the LimaCharlie SecOps platform.

Forensic Analyst

Conducts comprehensive digital forensics investigations, reconstructs attack timelines, and analyzes system artifacts using LimaCharlie's security operations capabilities.

Wasp Code Review

Performs deep-dive audits of Wasp framework applications to ensure architectural compliance, security, and performance standards.

Java Issue Triage Extension

Triages Java-related findings and static analysis issues during the finalization phase of the AI coding workflow.

LimaCharlie Reporting

Generates and serves interactive HTML reports, dashboards, and data visualizations for LimaCharlie security operations data via a local web server.

LimaCharlie Infrastructure as Code

Manages LimaCharlie security configurations as version-controlled code through automated exports, Git synchronization, and multi-organization deployment workflows.