Security & Testing Claude 技能

Security Code Review

Conducts deep security audits to identify vulnerabilities, hardcoded secrets, and OWASP compliance issues within your codebase.

Console Intelligence for Playwright

Captures and analyzes browser console output, exceptions, and framework-specific warnings to streamline web debugging and performance auditing.

Prompt Performance Testing

Measures and compares prompt efficacy through A/B testing, performance metrics, and detailed analytical reports.

Compliance Code Reviewer

Automates the verification of code against project-specific guidelines, CLAUDE.md rules, and architectural standards.

Cybersecurity Swarm Orchestrator

Automates defensive security workflows and coordinates multi-agent response playbooks to optimize incident response efficiency.

Bug Detection & Logic Review

Identifies critical logical errors, null references, and race conditions through multi-pass deep-dive code analysis.

Confidence Check

Assesses implementation readiness through a multi-factor 90% confidence threshold to prevent architectural drift and redundant code.

Security Review & Hardening

Audits code for vulnerabilities and enforces industry-standard security best practices across authentication, data handling, and infrastructure.

AI Security Guardrails

Implements multi-layered security architectures and ethical quality controls for AI agents and prompts.

Claude Code Permission Patterns

Configures granular security policies and tool access patterns to streamline developer workflows while maintaining system safety.

Systematic Debugging

Implements a structured methodology for identifying, isolating, and resolving complex software bugs using hypothesis-driven investigation.

Dark Mode Accessibility Tester

Automates comprehensive dark mode audits by emulating color schemes and validating WCAG 2.1 contrast ratios.

Rust Testing Best Practices

Enforces standardized unit testing patterns and implementation rules for robust Rust applications.

Prompt Library

Provides a comprehensive collection of over 18 optimized prompt templates and executable agents for specialized cognitive tasks.

QA Validation Agent

Executes multi-layered automated tests, security scans, and performance audits to ensure code meets production quality gates.

QA Test Specifications Agent

Generates comprehensive test strategies and technical specifications from architecture documents to establish robust quality gates before development begins.

Security Audit Agent

Performs comprehensive security reviews and vulnerability assessments to provide deployment clearance for software systems.

Access Control Auditor

Analyzes and audits access control configurations to identify vulnerabilities and misconfigurations in IAM policies and network ACLs.

Terraform Security Patterns

Secures infrastructure as code by implementing robust secrets management, automated compliance scanning, and policy enforcement.

AI Pilot: Code Elicitation & Self-Review

Empowers AI agents to self-review and correct code using 75 specialized techniques before final validation.

Python Expert Tester

Analyzes your Python project's existing tests and configurations to provide evidence-based recommendations for better coverage, structure, and performance.

Agent Evaluation

Evaluates and benchmarks LLM agents using statistical testing, behavioral contracts, and reliability metrics to ensure production readiness.

Security Test Scanner

Automates comprehensive security vulnerability scans and penetration testing for web applications and APIs.

Pentest Command Reference

Provides a comprehensive library of penetration testing commands and workflows for security professionals using industry-standard tools.

IDOR Vulnerability Testing

Conducts comprehensive security audits to identify and remediate Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Pentest Command Reference

Provides a comprehensive library of essential penetration testing commands for network scanning, exploitation, and vulnerability assessments.

Universal Test Runner

Automates the detection, execution, and reporting of unit and integration tests across multiple programming languages and frameworks.

SMTP Security Penetration Testing

Conducts thorough security assessments of SMTP servers to identify vulnerabilities like open relays, user enumeration, and weak authentication.

Accessibility Journey

Performs automated keyboard navigation audits and WCAG compliance checks using Playwright and axe-core.

Codex Review Checkpoint

Conducts automated code reviews using Codex CLI to identify bugs, security vulnerabilities, and UI changes before project milestones.