Security & Testing Claude 技能

Debugging Strategies

Implements systematic debugging workflows, profiling techniques, and root cause analysis to resolve complex software issues efficiently.

Opencode Spec-Check: Requirement Drift Detection

Verifies that implementation perfectly aligns with project specifications by detecting coverage gaps, scope creep, and terminology drift.

Kubernetes Security Policy Manager

Implements production-grade Kubernetes security policies including NetworkPolicy, RBAC, and Pod Security Standards for hardened cluster environments.

Solidity Security Best Practices

Master smart contract security patterns to prevent vulnerabilities like reentrancy, integer overflows, and unauthorized access in Solidity.

Web3 Smart Contract Testing

Automates comprehensive smart contract testing using Hardhat and Foundry to ensure security, reliability, and gas efficiency.

Python Testing Patterns

Implement robust Python test suites using pytest, fixtures, mocking, and test-driven development best practices.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Systematic Debugging Strategies

Implements systematic debugging techniques and profiling tools to isolate and resolve complex software defects and performance bottlenecks.

E2E Testing Patterns

Master end-to-end testing with Playwright and Cypress to build resilient, production-grade automated test suites.

Tech Debt Scanner

Audits project health by identifying technical debt, code duplication, and architectural bottlenecks to improve long-term maintainability.

Verification Guardrail

Enforces rigorous verification procedures to ensure all completion claims are backed by fresh, evidentiary test and build results.

Tech Debt Scanner

Audits project health by identifying technical debt, duplicate code, security vulnerabilities, and code quality bottlenecks.

Frontend Auth & JWT Patterns

Implements secure authentication flows using Better Auth and JWT token management for modern web applications.

Probitas Scenario Runner

Executes and validates Probitas testing scenarios with advanced filtering and debugging capabilities.

Probitas Scenario Writer

Automates the creation and editing of end-to-end test scenarios within the Probitas ecosystem.

TypeScript Any Eliminator

Refactors TypeScript codebases to replace 'any' types with robust, specific type definitions and strict interfaces.

Team Authorization & RBAC

Manages team-based permissions and role-based access control to ensure consistent authorization across client-side actions and server-side functions.

Web Application Testing

Enables automated end-to-end testing and browser interaction for local web applications using Playwright.

GitHub Security Fixer

Automates the identification, analysis, and remediation of GitHub CodeQL security alerts to maintain high code quality and security standards.

Godogen BDD Generator

Simplifies Go BDD development by colocating Godog step definitions with patterns using directive comments.

Dependency Security Expert

Secures software supply chains by identifying vulnerabilities, implementing automated scanning, and enforcing dependency management best practices.

Web3 Smart Contract Testing

Implements comprehensive testing strategies for smart contracts using Hardhat and Foundry to ensure security and gas efficiency.

Kubernetes Security Policies

Implement production-grade Kubernetes security using NetworkPolicies, RBAC, and Pod Security Standards.

SAST Security Configuration

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security standards across your codebase.

Auth Implementation Patterns

Implements secure authentication and authorization systems using JWT, OAuth2, and advanced access control patterns.

PCI Compliance Expert

Implement PCI DSS security standards to protect cardholder data and secure payment processing workflows.

Python Testing Patterns

Implements robust Python testing suites using pytest, advanced mocking, and test-driven development best practices.

JavaScript Testing Patterns

Implements professional testing strategies for JavaScript and TypeScript applications using frameworks like Jest and Vitest.

Temporal Python Testing

Implements comprehensive testing strategies for Temporal workflows using pytest, time-skipping, and replay validation.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within your codebase.