Security & Testing Claude 技能

Security Review & Vulnerability Prevention

Conducts comprehensive security audits and vulnerability checks for web applications based on OWASP standards and modern best practices.

Eval Harness

Verifies code integrity and quality through automated testing, linting, and build validation.

Claude Security Audit

Performs deep security inspections of Claude Code skills to detect malicious patterns, vulnerabilities, and supply chain risks.

TDD Workflow Assistant

Implements a rigorous test-driven development cycle to ensure code quality and reliability through systematic red-green-refactor iterations.

Security Auditor

Performs comprehensive security audits including OWASP Top 10 checks, secret detection, and dependency vulnerability scanning.

Compliance Management

Facilitates adherence to global security regulations and standards through structured controls, documentation templates, and audit preparation frameworks.

Clean Architecture Validator for .NET

Validates .NET API projects to ensure strict adherence to Clean Architecture principles and proper layer separation.

Security Assessment

Conducts comprehensive security audits, vulnerability scans, and penetration testing to identify and remediate software security risks.

Test Planning Expert

Generates comprehensive test strategies and structured plans to ensure high-quality software releases and robust coverage.

Repository Security Auditor

Performs comprehensive security audits on GitHub repositories to detect malicious code, data exfiltration, and suspicious dependencies before installation.

BDD Test Case Architect

Generates comprehensive BDD test specifications and traceability matrices by analyzing project features and business logic.

MCP Scanner

Evaluates third-party Model Context Protocol (MCP) servers for security vulnerabilities, functionality, and legal compliance before installation.

TDD Workflow Conductor

Implements a rigorous Test-Driven Development (TDD) cycle with automated quality gates and Git-integrated task tracking.

Go Testing & Quality

Implements idiomatic Go testing patterns and best practices to ensure robust, maintainable, and high-performance codebases.

Codex Root Cause Fixer

Diagnoses and resolves software errors by tracing root causes and delegating verified fixes to the Codex stack.

Web Application Testing

Automates local web application testing and browser interactions using Playwright for robust UI verification and debugging.

API Integration Testing

Validates .NET microservice endpoints using curl to ensure secure JWT authentication, proper CRUD functionality, and multi-tenant business isolation.

Rust Code Quality Auditor

Audits Rust codebases for idiomatic patterns, performance bottlenecks, and adherence to Apollo best practices.

Security Compliance & Governance

Automates security framework assessments and regulatory governance to ensure production-grade compliance adherence.

Defensive Security Operations

Automates security operations center tasks including threat hunting, alert triage, and incident response orchestration.

Offensive Security Testing

Performs authorized penetration testing and vulnerability assessments to identify security risks using industry-standard methodologies.

Cross-Platform Gleam Debugger

Diagnoses and resolves behavioral inconsistencies between Erlang and JavaScript targets in cross-platform Gleam projects.

API Test Automation

Automates the generation and execution of comprehensive REST and GraphQL API test suites to ensure contract compliance and endpoint reliability.

Web App Testing & Playwright Automation

Automates local web application testing and UI verification using Playwright and intelligent server lifecycle management.

Playwright Web Application Testing

Automates the testing and verification of local web applications using Playwright scripts and integrated server lifecycle management.

Spring Config Properties Unit Testing

Validates Spring Boot @ConfigurationProperties binding, validation, and profile-specific settings using lightweight context runners.

Security Review & Audit

Performs comprehensive security audits and provides implementation patterns to protect applications against common vulnerabilities and data exposure.

Code Auditor

Performs deep codebase analysis to evaluate architecture, security, performance, and maintainability while providing actionable improvement plans.

Spring Exception Handler Testing

Streamlines the creation of unit tests for Spring Boot @ControllerAdvice and @ExceptionHandler components using MockMvc.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using Jest, Vitest, and modern testing methodologies.