Security & Testing Claude 技能

Testing Pest

Generates comprehensive Pest test suites for Laravel projects, ensuring high coverage across controllers, services, and Livewire components with standardized organizational patterns.

Dependency Upgrade Manager

Facilitates complex framework and library version upgrades using compatibility analysis, staged rollouts, and automated testing strategies.

Claude Configuration Reviewer

Reviews Claude configuration files for security vulnerabilities, structural integrity, and prompt engineering best practices.

Security Requirement Extraction

Transforms threat models and business context into actionable security requirements, user stories, and test specifications.

Quality Gate Skill

Executes a comprehensive, non-destructive quality gate including linting, formatting, type safety, tests, and security checks for your codebase.

Peer LLM Code Consultant

Executes parallel code reviews using external LLM CLIs like Gemini and Codex to provide diverse architectural and quality insights.

Screen Reader Accessibility Testing

Validates web application accessibility by providing comprehensive guides and implementation patterns for screen reader testing across major platforms.

Frontend Auth & JWT Patterns

Implements secure authentication flows using Better Auth and JWT token management for modern web applications.

Infrastructure Security Hardening

Hardens cloud infrastructure and Kubernetes environments using CIS benchmarks, secure configuration patterns, and automated vulnerability scanning.

Testing Workflow

Executes comprehensive test suites including unit, integration, E2E, and mutation tests to validate code changes and ensure quality.

TypeScript Any Eliminator

Refactors TypeScript codebases to replace 'any' types with robust, specific type definitions and strict interfaces.

Accessibility Test Scanner

Audits web applications for WCAG 2.1/2.2 compliance, ARIA validation, and keyboard navigation to ensure inclusive digital experiences.

Pre-Commit Validator

Automates pre-commit checks for TypeScript type safety, test execution, code coverage, and Git branch compliance.

Validation Checklist

Guides software projects through a standardized pre-delivery validation process for backend and frontend code.

Team Authorization & RBAC

Manages team-based permissions and role-based access control to ensure consistent authorization across client-side actions and server-side functions.

End-to-End Test Generator

Generates automated end-to-end testing scripts using Playwright, Cypress, or Selenium to validate complex web application workflows.

Secrets Guardian

Secures codebases by preventing accidental credential leaks through automated scanning and pre-commit hook integration.

TypeScript Expert

Applies expert-level guidelines to write, review, and refactor TypeScript code for maintainability, type safety, and performance.

E2E Playwright Diagnosis

Diagnoses and resolves End-to-End (E2E) test failures in Playwright using a systematic, tool-driven workflow.

SEMO Integrated Quality Audit

Audits the entire SEMO monorepo for package quality, standards compliance, and structural inefficiencies.

Workscript Node Review

Reviews workscript node implementations for compliance with development blueprints, best practices, and metadata consistency.

Skill Evaluator

Evaluates the quality of agent skills using a comprehensive, rubric-based assessment.

GitHub Security Fixer

Automates the identification, analysis, and remediation of GitHub CodeQL security alerts to maintain high code quality and security standards.

Snapshot Test Manager

Manages and updates snapshot tests across popular JavaScript frameworks using intelligent diff analysis and selective updates.

E2E Testing Patterns

Implements robust end-to-end testing architectures using Playwright and Cypress to ensure application reliability and prevent regressions.

Debugging Strategies

Implements systematic troubleshooting techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

Dependency Security Expert

Secures software supply chains by identifying vulnerabilities, implementing automated scanning, and enforcing dependency management best practices.

Test Helper

Generates and runs integration tests for TypeScript/JavaScript applications using the Bun test runner.

Admin Dashboard QA Workflow

Orchestrates a rigorous, multi-phase QA workflow for implementing, modifying, and fixing admin dashboard features.

Security Compliance Reporter

Generates comprehensive security compliance reports for standards like PCI DSS, HIPAA, and SOC 2 through automated data gathering and formatting.