Security & Testing Claude 技能

Vultisig MPC Wallet

Enables secure, multi-chain crypto operations for AI agents using threshold cryptography across 36+ blockchains.

Compliance Audit

Audits development branches to ensure adherence to project principles including DDD, TDD, DRY, and formal shipping workflows.

Code Review Methodology

Standardizes code reviews by applying a dual-axis framework of severity ratings and confidence scores to identify high-impact issues.

OBS Plugin Testing & Debugging Guide

Provides comprehensive guidance and implementation patterns for testing and debugging OBS Studio plugins in C/C++ and Rust.

TDD Enforcer

Enforces Test-Driven Development principles and the Red-Green-Refactor cycle across multiple programming languages and frameworks.

Home Assistant Integration Review

Audits Home Assistant integrations against the official Integration Quality Scale (IQS) across all 52 technical and architectural rules.

Scenario Testing

Enforces scenario-driven end-to-end testing using real dependencies and live data to ensure features are truly validated before completion.

OCSF Mapping for Tenzir

Normalizes security events to the Open Cybersecurity Schema Framework (OCSF) within Tenzir TQL pipelines.

AJV Strict Schema Doctor

Diagnoses and repairs AJV strict-mode JSON Schema compilation failures by identifying error classes and applying localized patches.

Claude Code Quality Patterns

Implements production-ready security hooks, automated formatting, and CI/CD integrations for safer and more efficient Claude Code workflows.

Security Code Analysis

Performs rigorous manual security code reviews by tracing untrusted data flows and validating against OWASP and CWE frameworks.

Security Triage Engineer

Automates the analysis, management, and remediation of security vulnerabilities across Checkmarx, SonarCloud, and GitHub Advanced Security.

Home Assistant Testing

Generates standardized pytest suites for Home Assistant integrations to ensure compliance with official Quality Scale standards.

Security Architecture Reviewer

Evaluates system designs for robust authentication, authorization, data protection, and cryptographic correctness.

Python Testing Patterns

Implements robust testing strategies using pytest, mocking, and advanced parameterization for Python applications.

Bitwarden Security Threat Modeling

Generates comprehensive security threat models and data flow diagrams following Bitwarden's formal engagement framework.

MCP Plugin Testing Suite

Automates the discovery and manual testing of MCP tool schemas to ensure plugin reliability and performance within Claude Code.

Dependency Security Auditor

Audits software dependencies and manages security vulnerabilities across supply chains using Dependabot and Grype.

Secret Detection & Remediation

Identifies hardcoded credentials, audits for potential leaks, and provides guided remediation workflows to secure sensitive information in codebases.

Python AST Code Evaluator

Automates the creation of Abstract Syntax Tree (AST) based checks to evaluate the quality and compliance of AI-generated Python code.

Compliance Check & AI Ethics

Audits project dependencies for license compatibility, traces PII for data privacy, and evaluates AI ethical standards.

Security & Cyber-History Researcher

Conducts deep-dive research into malware, vulnerabilities, and threat intelligence to inform technical narratives and documentation.

Security Audit & Vulnerability Scanning

Audits codebases for OWASP Top 10 vulnerabilities, AI-specific risks, and dependency security flaws.

Plugin Verification

Validates Claude extensions and plugins across hooks, manifest schemas, and runtime environments to ensure deployment readiness.

Automated Test Writer

Generates comprehensive unit, integration, and end-to-end tests to ensure code reliability and meet coverage targets.

Truesight Workflow Orchestrator

Orchestrates and routes complex AI evaluation workflows, including error analysis, trace reviews, and live evaluation setup.

TDD Discipline

Enforces a strict test-driven development workflow using the Red-Green-Refactor cycle across multiple programming languages.

Truesight Evaluation Creator

Designs, deploys, and integrates automated quality evaluations and guardrails for AI model outputs using Truesight MCP.

Systematic Debugging Protocol

Applies a structured root cause investigation protocol to resolve failing tests and persistent code defects without guesswork.

Electrobun Kitchen Sink

Streamlines testing and development for Electrobun desktop applications through automated integration suites and interactive playgrounds.