Security & Testing Claude 技能

.NET Test Runner

Executes .NET unit tests, generates code coverage reports, and runs performance benchmarks using the dotnet CLI.

Code Reviewer

Performs automated code reviews with security scanning, quality metrics, and performance analysis to ensure production-grade code.

Error Handling Patterns

Implements robust error handling strategies and resilient application patterns across multiple programming languages to ensure software stability.

E2E Testing Patterns

Implements robust end-to-end testing architectures using Playwright and Cypress to ensure application reliability and prevent regressions.

CI/CD Secrets Management

Implements secure handling, storage, and rotation of sensitive credentials across major CI/CD platforms and cloud providers.

Kubernetes Security Policies

Implement defense-in-depth Kubernetes security through network policies, RBAC configurations, and pod security standards.

PCI Compliance & Secure Payments

Implements PCI DSS requirements to secure payment card data and maintain industry-standard payment processing security.

Debugging Strategies

Provides systematic techniques and diagnostic tools to identify, isolate, and resolve complex software bugs across various technology stacks.

Codex-AI Advanced Code Intelligence

Automates deep code reviews, algorithm design, and architectural analysis using high-reasoning Codex models.

Kiro Spec Detector

Identifies modified Kiro specification files by comparing current branch changes against a base branch for optimized testing.

Code Health Auditor

Analyzes codebases to identify technical debt, test coverage gaps, and refactoring opportunities across multiple languages.

PICT Test Designer

Generates optimized pairwise test suites by analyzing requirements and code logic using the PICT methodology.

KrakenD Security Auditor

Performs comprehensive security audits and vulnerability scanning for KrakenD API Gateway configurations to ensure production readiness.

Speck PR Reviewer

Conducts systematic GitHub pull request reviews with VSCode integration, logical file clustering, and automated comment management.

Elixir Testing with ExUnit

Writes comprehensive, production-grade test suites for Elixir applications using ExUnit, Mox, and property-based testing patterns.

Smart Test Fixing

Systematizes the process of identifying, grouping, and fixing failing tests to restore suite health quickly and efficiently.

Hookify Rule Engine

Standardizes the creation and configuration of project-specific rules to monitor Claude's actions and enforce development best practices.

gdUnit4 Test Writer

Generates robust GDScript unit and integration tests for the Godot engine using the gdUnit4 framework.

Web Application Testing Toolkit

Enables automated testing and debugging of local web applications using Playwright scripts and integrated server management.

SAST Configuration

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security standards in application code.

STRIDE Security Analysis Patterns

Systematically identifies security threats and implements risk mitigation strategies using the industry-standard STRIDE methodology.

Temporal Python Testing

Facilitates comprehensive testing of Temporal workflows using pytest, time-skipping environments, and deterministic replay strategies.

Attack Tree Construction

Visualizes and analyzes security threat paths through systematic attack tree modeling and risk assessment.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen system defenses and prioritize remediation efforts.

Security Requirement Extraction

Transforms threat models and business logic into actionable security requirements, user stories, and test cases.

Pythonista Debugging

Eliminates Python bugs by identifying root causes and implementing clean, direct fixes instead of complex workarounds.

Python Testing Best Practices

Enforces rigorous Python testing standards and TDD workflows using pytest, refactor-safe mocking, and invariant-based verification.

MoonBit PBT Automation (Aletheia)

Automates the generation and synchronization of property-based testing templates for MoonBit modules using the Aletheia framework.

Find Bugs & Security Auditor

Audits local branch changes for security vulnerabilities, logic bugs, and code quality issues using a structured five-phase review process.

MoonBit PBT Workflow Guide

Orchestrates Property-Based Testing workflows in MoonBit repositories using the Aletheia toolchain.