Security & Testing Claude 技能

Accessibility Test Scanner

Audits web applications for WCAG 2.1/2.2 compliance, ARIA validation, and keyboard navigation to ensure inclusive digital experiences.

End-to-End Test Generator

Generates automated end-to-end testing scripts using Playwright, Cypress, or Selenium to validate complex web application workflows.

Snapshot Test Manager

Manages and updates snapshot tests across popular JavaScript frameworks using intelligent diff analysis and selective updates.

Security Compliance Reporter

Generates comprehensive security compliance reports for standards like PCI DSS, HIPAA, and SOC 2 through automated data gathering and formatting.

Probitas Setup

Initializes Probitas project environments and installs necessary CLI tools for E2E testing and automation.

GDPR Compliance Scanner

Audits applications and data systems to identify GDPR compliance gaps and generate actionable remediation reports.

Global Validation

Implements comprehensive input validation and sanitization across client and server environments to ensure data integrity and security.

Cybernetic Open Game Logic

Formalizes off-chain and on-chain agent interactions using compositional game theory and GF(3) Nash equilibrium for secure, value-conserving feedback loops.

Python Testing (Pytest)

Generates comprehensive Python test suites using the modern pytest ecosystem, covering async operations, mocking, and coverage reports.

OpenSpec Change Verifier

Validates that code implementations align perfectly with specifications, tasks, and design documents before archival.

Testing & Test Writing

Implements rigorous Test-Driven Development (TDD) practices, covering edge cases and ensuring high code coverage through maintainable, fast-executing test suites.

Testing & QA Strategy

Implements robust testing patterns and hypothesis-driven development strategies for high-quality software delivery.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, fixtures, and mocking to ensure code reliability and maintainability.

Web Application Testing Toolkit

Enables automated testing and debugging of local web applications using Playwright scripts and integrated server management.

Condition-Based Test Waiting

Eliminates flaky tests and race conditions by replacing arbitrary timeouts with smart condition-based polling.

Global Truth Safety

Ensures technical accuracy and radical candor by delivering verified code, surfacing risks immediately, and making evidence-based assertions.

E2E Testing Patterns

Implements and optimizes end-to-end testing suites using Playwright and Cypress best practices to ensure application reliability.

Systematic Debugging Framework

Enforces a rigorous four-phase debugging methodology to identify root causes and ensure stable, verified code fixes.

SAST Configuration

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security standards in application code.

Testing Anti-Patterns Guard

Prevents common software testing mistakes by enforcing strict TDD principles and identifying fragile mock implementations.

STRIDE Security Analysis Patterns

Systematically identifies security threats and implements risk mitigation strategies using the industry-standard STRIDE methodology.

Temporal Python Testing

Facilitates comprehensive testing of Temporal workflows using pytest, time-skipping environments, and deterministic replay strategies.

Defense-in-Depth Validation

Implements multi-layered data validation patterns to eliminate bugs by making them structurally impossible across entry points, business logic, and environment guards.

Input Validation Scanner

Scans source code for security vulnerabilities by identifying improper input sanitization and validation patterns.

Accessibility Markup Checker

Audits and remediates web accessibility issues by mapping W3C and markuplint reports from build outputs back to Astro source components.

Test-Driven Development (TDD) Workflow

Implements disciplined Red-Green-Refactor cycles for high-quality software development using TypeScript, Bun, and Rust.

Attack Tree Construction

Visualizes and analyzes security threat paths through systematic attack tree modeling and risk assessment.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen system defenses and prioritize remediation efforts.

Security Requirement Extraction

Transforms threat models and business logic into actionable security requirements, user stories, and test cases.

Pythonista Debugging

Eliminates Python bugs by identifying root causes and implementing clean, direct fixes instead of complex workarounds.