Security & Testing Claude 技能

Security Pro Pack

Conducts comprehensive security audits, vulnerability scanning, and compliance verifications across codebases and infrastructure.

PCI-DSS Validator

Validates payment card industry data security standards (PCI DSS) compliance by auditing application code and infrastructure configurations for security vulnerabilities.

Dependency Security Checker

Scans project dependencies for known security vulnerabilities, outdated versions, and license compliance issues across various package managers.

SOC 2 Audit Helper

Automates SOC 2 audit preparation by gathering evidence, assessing security controls, and identifying compliance gaps.

Security Agent

Analyzes codebases to identify security vulnerabilities, authentication flaws, and insecure dependencies with detailed remediation guidance.

API Fuzzer

Performs automated API fuzz testing to discover security vulnerabilities, edge cases, and potential system crashes.

Plugin Auditor

Performs automated audits of Claude Code plugins to ensure security, best practice compliance, and repository quality standards.

Infrastructure Compliance Checker

Monitors and validates infrastructure configurations to ensure adherence to compliance policies and security standards.

Vertex Engine Inspector

Inspects and validates Vertex AI Agent Engine managed runtimes to ensure production readiness, security compliance, and protocol adherence.

Multi-Language Indexing Verifier

Verifies the multi-language indexing and search capabilities of the code-index-mcp server across various programming languages.

Saleae Logic MSO Analyzer

Analyzes and decodes digital signals from Saleae Logic MSO binary export files for hardware reverse engineering and protocol analysis.

NetFlows Analyzer

Extracts and analyzes network flows from packet capture files with automated DNS hostname resolution.

Overnight Development

Automates overnight software development by enforcing a test-driven development (TDD) workflow with Git hooks.

MassGen Self-Improvement Guide

Optimizes MassGen's multi-agent coordination and terminal interface through programmatic automation and visual UX evaluation.

Inline Repo Pre-Push Validator

Validates code across multiple stacks—including Server, Web, and Swift—to ensure correctness and project health before production releases.

QA Testing & Verification Protocol

Enforces rigorous testing protocols and mandatory user verification for web applications to eliminate false success claims and ensure production-grade reliability.

Data Safety Auditor

Audits Vue 3 and Pinia applications for data loss risks, storage vulnerabilities, and synchronization issues with actionable remediation.

AI Truthfulness Enforcer

Enforces zero-tolerance verification protocols to prevent Claude Code from making unverified claims or fabricating progress reports.

Crisis Debugging Advisor

Provides a systematic framework to regain control and verify reality when AI-assisted development leads to broken application states and false success claims.

Playwright Electron Debugger

Enables live debugging and UI inspection of Electron applications using Playwright and Chrome DevTools Protocol.

Authentication Patterns

Implements industry-standard authentication and authorization flows including JWT, OAuth2 with PKCE, and RBAC.

Security Hardening

Hardens application security by implementing best practices for input validation, authentication, and vulnerability prevention.

TDD Mastery

Implements a disciplined Test-Driven Development workflow using the Red-Green-Refactor cycle across multiple programming languages.

Testing Strategies & Best Practices

Implements advanced testing methodologies including contract, snapshot, and property-based testing to ensure robust software reliability.

Rust Anti-Pattern Reviewer

Identifies non-idiomatic Rust code and suggests high-performance refactoring patterns to improve safety and maintainability.

Unsafe Rust & FFI Checker

Audits unsafe Rust code for soundness, memory safety, and proper FFI implementation patterns.

Best Practices & Web Quality

Implements modern web development standards for security, browser compatibility, and code quality based on Lighthouse audits.

Testing Guidelines for Claude Code

Establishes standardized testing principles for building robust software through integration-focused strategies and mandatory regression coverage.

Code Anti-Pattern Guardrails

Enforces cross-language best practices and prevents common architectural errors in Python, Rust, and TypeScript.

ActivityPub WordPress Testing

Streamlines the creation and debugging of PHPUnit and Playwright tests for WordPress ActivityPub implementations.