Security & Testing Claude 技能

Implementation Verifier

Validates that code implementation strictly adheres to PRD specifications without unauthorized substitutions or omissions.

Skill Testing with Subagents

Applies a rigorous TDD cycle to verify and harden Claude Code skills against pressure and rationalization.

Test-Driven Development (TDD) Workflow

Enforces a strict Red-Green-Refactor cycle to ensure code reliability and high test coverage.

Security Review Specialist

Conducts comprehensive security audits, threat modeling, and remediation guidance for software projects using standardized safety frameworks.

Systematic Debugging

Implements a rigorous four-phase framework to identify root causes and ensure stable bug fixes before implementation.

Testing Anti-Pattern Prevention

Enforces best practices in software testing by preventing mock reliance, production code pollution, and incomplete test doubles.

Nabledge Skill Benchmark Framework

Benchmarks and validates Nablarch-specific AI skills using isolated sub-agent execution to ensure high-precision performance and regression detection.

Contract Schema Validator

Validates JSON schemas and fixtures to ensure data integrity and prevent breaking format changes in contract-driven applications.

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries to make software bugs structurally impossible.

Supabase RLS Security Testing

Validates and audits Supabase Row Level Security (RLS) policies using automated test patterns for user isolation and multi-tenant security.

Supabase RLS Security Templates

Implements production-ready Row Level Security (RLS) policies and security audits for Supabase applications.

Clerk Next.js Integration

Implements secure Clerk authentication patterns for Next.js applications using both App Router and Pages Router.

Clerk Auth Testing & Validation

Validates Clerk authentication setups and automates security audits, E2E testing, and unit test generation for robust user identity management.

TDD Refactor Phase

Guides developers through the refactoring stage of the Test-Driven Development cycle to enhance code quality without altering behavior.

Moai Foundation Quality

Orchestrates enterprise-grade code quality through systematic TRUST 5 validation and proactive automated standards enforcement.

MoAI AST-Grep Code Intelligence

Performs structural code search, security scanning, and semantic refactoring using Abstract Syntax Tree analysis across 40+ languages.

Security Audit & OWASP Compliance

Performs comprehensive security reviews and code audits using the OWASP Top 10 framework to identify and remediate vulnerabilities.

Test Generation Agent

Generates robust unit, integration, and end-to-end test suites to ensure code reliability and comprehensive edge case coverage.

Verification & Quality Assurance

Ensures code reliability and agent output quality using real-time truth scoring and automated rollback systems.

Financial Model & Code Validator

Ensures financial models and underwriting tools are accurate, reasonable, and defensible through systematic cross-checking and automated testing.

Clerk OAuth Provider Setup

Streamlines the configuration and testing of 19+ OAuth authentication providers for Clerk-powered applications.

Clerk Authentication Specialist

Implements modern, secure authentication flows using Clerk, including WebAuthn, passkeys, and pre-built UI components.

TDD Workflow

Automates the Test-Driven Development cycle for autonomous feature implementation and high-integrity code generation.

Advanced Bug Investigation

Implements a hypothesis-driven workflow to isolate root causes and resolve complex software regressions with precision.

MoAI Development Workflow & QA

Automates the full development lifecycle from test-driven development and debugging to performance optimization and multi-agent code reviews.

Dependency Security Scan

Analyzes project dependencies across multiple ecosystems to detect, report, and automatically fix known security vulnerabilities and CVEs.

Hook Register

Validates and registers version-controlled hook manifests to automate governance and enforcement within the Betty infrastructure.

Code Quality & Security Reviewer

Ensures code excellence and security by performing systematic reviews based on industry best practices and rigorous safety standards.

Protocol Reverse Engineering

Analyzes, documents, and dissects complex network protocols for security research, debugging, and interoperability.

Hook Simulator

Tests and validates Betty Framework hook manifests to ensure correct trigger logic and command execution before deployment.