Security & Testing Claude 技能

Secret Scanner

Scans your codebase for exposed API keys, passwords, and private keys to prevent security vulnerabilities and credential leaks.

Vulnerability Scanner

Automates security audits by scanning source code, dependencies, and configurations for CVEs and potential exploits.

Claude Plugin Auditor

Automates security reviews and quality audits for Claude Code plugins to ensure repository compliance and production readiness.

SSL Certificate Manager

Manages and monitors SSL/TLS certificate lifecycles, including automated expiry checks, renewals, and detailed infrastructure audits.

GDPR Compliance Scanner

Identifies GDPR compliance risks and privacy violations within applications and data systems to ensure regulatory adherence.

SQL Injection Detector

Identifies and remediates SQL injection vulnerabilities within codebases to ensure application security and data integrity.

Session Security Checker

Audits session management implementations to identify security vulnerabilities like session fixation and weak ID generation.

Session Security Checker

Audits codebase session management to identify security vulnerabilities like session fixation and weak ID generation.

SQL Injection Vulnerability Detector

Identifies and remediates SQL injection vulnerabilities by analyzing code patterns, input vectors, and database query contexts.

Vertex AI Production Validator

Validates production readiness for Vertex AI Agent Engine deployments across security, monitoring, performance, and compliance standards.

End-to-End Test Generator

Automates the creation of comprehensive E2E test scripts using Playwright, Cypress, and Selenium to validate web application workflows.

SOC2 Audit Helper

Automates SOC2 audit preparation by gathering security evidence, identifying compliance gaps, and generating detailed readiness reports.

Data Encryption & Decryption

Secures sensitive information by encrypting and decrypting data using industry-standard algorithms directly within the Claude Code environment.

Dependency Security Checker

Analyzes project dependencies to identify security vulnerabilities, outdated packages, and license compliance issues across multiple package managers.

Access Control Auditor

Audits and secures access control implementations across IAM policies, ACLs, and application permissions to prevent unauthorized access and privilege escalation.

API Security Fuzzer

Performs automated fuzz testing on REST APIs to identify security vulnerabilities, crashes, and input validation failures.

Data Encryption & Security

Secures sensitive data and files through advanced encryption and decryption algorithms like AES and RSA.

Container Security Scanner

Scans container images and running environments for vulnerabilities using industry-standard security tools like Trivy and Snyk.

Authentication Security Validator

Validates authentication implementations against security best practices to identify vulnerabilities in JWT, OAuth, and session management.

Security Incident Responder

Guides users through the complete security incident response lifecycle, from initial classification to forensic evidence collection and remediation.

Dependency Security & Compliance Checker

Analyzes project dependencies across multiple package managers to identify security vulnerabilities, outdated versions, and license compliance issues.

Dependency Security & License Checker

Analyzes project dependencies for security vulnerabilities, outdated packages, and license compliance across multiple programming languages.

Security Auditor Pro

Conducts comprehensive security audits and vulnerability assessments across codebases, infrastructure configurations, and compliance frameworks.

Penetration Testing & Security Audit

Conducts automated security vulnerability assessments and penetration tests on web applications and APIs.

Security Code Reviewer

Performs automated security audits to identify vulnerabilities like SQL injection, XSS, and insecure dependencies within your codebase.

Load Test Runner

Automates the creation and execution of performance validation scripts using industry-standard tools like k6, JMeter, and Artillery.

Smoke Test Runner

Executes rapid verification suites to ensure core application functionality and system health after code or configuration changes.

Security Incident Responder

Guides users through the security incident response lifecycle, from initial classification and containment to forensic evidence collection and remediation.

Security Misconfiguration Finder

Detects and remediates security vulnerabilities within infrastructure-as-code and application configuration files.

Authentication Validator

Validates authentication implementations against industry security standards to identify vulnerabilities in JWT, OAuth, and session management.