Security & Testing Claude 技能

TUnit Test Runner

Executes and manages TUnit tests with Playwright integration to verify Blazor component functionality and accessibility.

Algorand Vulnerability Scanner

Audits Algorand smart contracts to detect critical security vulnerabilities and logic flaws in TEAL or PyTeal code.

AFL++ Fuzzing

Performs comprehensive binary and source code fuzzing using the AFL++ framework to identify software vulnerabilities.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Secrets Management & CI/CD Security

Implements secure secrets handling for CI/CD pipelines using industry-standard tools like Vault, AWS Secrets Manager, and platform-native solutions.

JUnit Core Testing Standards

Implements professional JUnit 5 testing patterns and coverage standards for high-quality Java applications.

Fuzzing Dictionary Generator

Enhances security testing performance by building specialized dictionaries of magic values and syntax tokens for coverage-guided fuzzers.

Tizen Security Compliance

Maps security requirements to implementation and coordinates compliance against international standards for Tizen and IoT applications.

Token Integration Analyzer

Analyzes token implementations and integrations for security vulnerabilities, ERC compliance, and non-standard behavioral patterns using Trail of Bits expertise.

Gay Fokker-Planck Staging

Implements a dual-layered Fokker-Planck equilibrium protocol to verify skill staging gates through counterfactual world analysis.

Fuzzing Harness Writing

Develops high-performance fuzzing harnesses to identify security vulnerabilities and edge-case crashes in software codebases.

Tizen CVE Security Scanner

Identifies known vulnerabilities in Tizen application dependencies and kernel versions using the OpenCVE database and Samsung security updates.

LibAFL Security Fuzzing

Implements advanced fuzzing campaigns using the LibAFL framework to identify software vulnerabilities and memory safety issues.

Kubernetes Security Policy Expert

Implements production-grade Kubernetes security configurations including NetworkPolicies, RBAC, and Pod Security Standards.

Red Team

Provides a constructive adversarial perspective to stress-test ideas, designs, and decisions through rigorous examination.

Security Scan for Claude Code

Audits Claude Code configurations and MCP servers for security vulnerabilities, misconfigurations, and injection risks using AgentShield.

AI Validation Architect

Defines actionable AI validation criteria and testing standards to ensure code quality before task completion.

Security Vulnerability Scanner

Scans codebases for OWASP Top 10 vulnerabilities, hardcoded secrets, and insecure dependencies using static analysis.

Sentinel QA Sweep

Performs automated full-stack QA sweeps to identify UI bugs, API schema drift, and security violations across web applications.

Accessibility Auditor

Conducts comprehensive WCAG 2.2 Level AA accessibility audits for React and TypeScript applications with specialized MUI framework awareness.

Skill Security Analyzer

Decompiles freeform SKILL.md files into machine-auditable structures to perform automated security audits and risk scoring.

Rust Unsafe & FFI Safety Guide

Enforces best practices for Rust unsafe code to minimize risk, manage raw pointers, and ensure FFI interoperability while preventing undefined behavior.

QE Contract Testing

Automates consumer-driven contract testing and schema validation for REST, GraphQL, and event-driven APIs to prevent breaking changes.

DotNet Time Testing with TimeProvider

Streamlines testing of time-dependent .NET logic by implementing and manipulating TimeProvider and FakeTimeProvider abstractions.

Spring Boot Security

Implements industry-standard security patterns and vulnerability mitigations for Java Spring Boot applications.

Codebase Auditor

Performs comprehensive audits of code quality, security vulnerabilities, and technical debt using modern engineering standards and actionable remediation plans.

Automated Code Review Auditor

Performs automated audits for security vulnerabilities, accessibility compliance, design token usage, and data attribute consistency.

Security Reviewer

Enforces comprehensive security best practices and identifies potential vulnerabilities during the development process.

Privacy Compliance Engineer

Enforces rigorous data protection controls and privacy-by-design principles across application layers to ensure regulatory compliance.

Reverse Engineering

Performs deep binary analysis, decompilation, and vulnerability research using Ghidra, IDA Pro, and radare2 integration.