Security & Testing Claude 技能

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and fine-grained RBAC.

PCI Compliance Manager

Implements and maintains PCI DSS compliance standards for secure payment card processing and sensitive data handling.

Python Testing Patterns

Implements robust Python testing strategies using pytest, mocking, and test-driven development best practices.

JavaScript Testing Patterns

Implements comprehensive testing strategies using Jest, Vitest, and Testing Library for unit, integration, and end-to-end testing.

Auth Implementation Patterns

Implement secure authentication and authorization systems using industry-standard patterns like JWT, OAuth2, and RBAC.

Temporal Python Testing

Implements robust testing strategies for Temporal workflows using pytest, time-skipping, and activity mocking.

E2E Testing Patterns

Implements robust end-to-end testing strategies using Playwright and Cypress to ensure application reliability and prevent regressions.

Debugging Strategies

Implements systematic debugging workflows, profiling techniques, and root cause analysis to resolve complex software issues efficiently.

Kubernetes Security Policy Manager

Implements production-grade Kubernetes security policies including NetworkPolicy, RBAC, and Pod Security Standards for hardened cluster environments.

Solidity Security Best Practices

Master smart contract security patterns to prevent vulnerabilities like reentrancy, integer overflows, and unauthorized access in Solidity.

SAST Configuration & Security Scanning

Configures and optimizes static application security testing tools to automate vulnerability detection within the development lifecycle.

Web3 Smart Contract Testing

Automates comprehensive smart contract testing using Hardhat and Foundry to ensure security, reliability, and gas efficiency.

PCI Compliance Guide

Implements and enforces PCI DSS security standards for secure payment processing and cardholder data management.

Python Testing Patterns

Implement robust Python test suites using pytest, fixtures, mocking, and test-driven development best practices.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Systematic Debugging Strategies

Implements systematic debugging techniques and profiling tools to isolate and resolve complex software defects and performance bottlenecks.

E2E Testing Patterns

Master end-to-end testing with Playwright and Cypress to build resilient, production-grade automated test suites.

Skill Testing Framework

Verifies that AI process documentation and specialized skills are effective and resistant to rationalization by applying a test-driven development cycle to their creation.

End-to-End Testing

Provides expert guidance for writing resilient system-wide tests using user-facing locators, semantic helpers, and auto-retriable assertions.

Deep Analysis

Conducts thorough code audits, security threat modeling, and performance evaluations using structured reasoning templates.

SQL Test Generator

Generates unit test fixtures and configurations for BigQuery SQL queries to validate transformation logic during development using synthetic data.

Playwright E2E Test Generator

Generates independent, production-grade Playwright end-to-end test files following strict reliability and selector standards.

The Oracle

Conducts multi-source research across codebases and the web to provide deep architectural analysis and complex debugging solutions.

Keycloak Admin

Manages Keycloak identity services, including realm configuration, OAuth 2.0 setup, and user management via the Admin REST API.

Global Validation

Implements comprehensive multi-layer input validation and sanitization to ensure data integrity and prevent security vulnerabilities across the application.

CUI Marketplace Architecture

Enforces architectural standards and validation patterns for self-contained, compliant Claude Code marketplace components.

Container Security Guide

Implements defense-in-depth security practices for containerized applications using vulnerability scanning, image hardening, and CIS benchmark compliance.

STEEB Task Debugger

Diagnoses and resolves task management issues in the STEEB application, including state synchronization errors, UI inconsistencies, and Firestore integration failures.

Global Validation

Enforces robust input validation and sanitization standards to ensure data integrity and security across application logic and API endpoints.

E2E Testing with Selenium

Implements robust end-to-end testing suites using Selenium WebDriver and the Page Object Pattern for reliable browser automation.