Security & Testing Claude 技能

Testing Guidelines

Enforces rigorous testing standards including strict assertions, minimal mocking, and clear naming conventions for high-quality test suites.

Intelligent Bug Diagnosis & Fix

Diagnoses and resolves runtime errors by aligning source code with project contracts and architectural context.

Precommit Build Validator

Validates code changes by running precommit checks, automated builds, and battery-aware test suites.

Session Security Checker

Audits and secures session management implementations within your codebase to prevent vulnerabilities like session fixation and hijacking.

Test Environment Manager

Orchestrates and manages isolated, reproducible test environments using Docker Compose and Testcontainers.

Error Handling Patterns

Implements robust error handling strategies and resilient application patterns across multiple programming languages to ensure software stability.

Bats Shell Testing Patterns

Provides comprehensive patterns and best practices for writing automated unit tests for shell scripts using the Bats framework.

E2E Testing Patterns

Implements robust end-to-end testing architectures using Playwright and Cypress to ensure application reliability and prevent regressions.

Web Application Testing

Tests local web applications using Playwright scripts with automated server lifecycle management and DOM inspection capabilities.

CI/CD Secrets Management

Implements secure handling, storage, and rotation of sensitive credentials across major CI/CD platforms and cloud providers.

Test Environment Manager

Orchestrates isolated, reproducible test environments using Docker Compose and Testcontainers to streamline software testing workflows.

Kubernetes Security Policies

Implement defense-in-depth Kubernetes security through network policies, RBAC configurations, and pod security standards.

Integration Test Runner

Automates the setup, execution, and cleanup of integration test suites including database orchestration and service management.

PCI Compliance & Secure Payments

Implements PCI DSS requirements to secure payment card data and maintain industry-standard payment processing security.

Debugging Strategies

Provides systematic techniques and diagnostic tools to identify, isolate, and resolve complex software bugs across various technology stacks.

Bible Widget Testing Assistant

Automates the validation and testing of embeddable Bible widgets, ensuring accurate scripture reference parsing and audio integration.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure reliable user journeys and zero regressions.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure production code is always verified by failing tests first.

Nixtla Test Generator

Generates comprehensive pytest suites from functional requirements to automate test scaffolding for Nixtla-based plugins and pipelines.

Security Test Scanner

Automates comprehensive security vulnerability scans and penetration tests for applications and APIs using OWASP standards.

Test Data Generator

Generates realistic, schema-compliant test data to populate databases and simulate user behavior for comprehensive software testing.

.NET Unit Testing Patterns

Implements standardized unit testing architectures for .NET applications using xUnit, Moq, and FluentAssertions.

Assertion Helper

Generates precise, context-aware assertions for unit and integration tests by analyzing function logic and data structures.

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and role-based access control patterns.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Kiro Spec Detector

Identifies modified Kiro specification files by comparing current branch changes against a base branch for optimized testing.

Load Balancer Tester

Validates and stress-tests load balancer configurations, including traffic distribution, failover mechanisms, and session persistence.

Debugging Strategies & Root Cause Analysis

Master systematic debugging techniques and profiling tools to efficiently resolve bugs and performance bottlenecks across any technology stack.

Error Handling Patterns

Implements robust error handling strategies and resilient architectural patterns across multiple programming languages.

Automated Mock & Stub Generator

Generates comprehensive mock data, stub functions, and test datasets to isolate code environments and accelerate automated testing.