Security & Testing Claude 技能

Testing & Test Writing

Writes strategic, behavior-focused tests for core user flows and critical business paths to balance development velocity with reliable coverage.

Web3 Smart Contract Testing

Tests smart contracts comprehensively using Hardhat and Foundry to ensure security, gas efficiency, and protocol reliability.

Comprehensive Code Review

Performs ultra-critical, multi-pass analysis of code changes to identify runtime failures, architectural flaws, and environment risks before merging.

Testing Anti-Patterns Guard

Eliminates common testing mistakes by enforcing strict TDD principles and preventing mock-related technical debt.

Solidity Security & Smart Contract Audit

Implements industry-standard security patterns and vulnerability prevention for Solidity smart contracts.

Defense-in-Depth Validation

Enforces a multi-layered validation strategy across application layers to make structural bugs impossible and ensure data integrity.

Systematic Debugging

Implements a rigorous four-phase framework to identify root causes and resolve complex technical issues without introducing regressions.

SQL Test Generator

Generates unit test fixtures and configurations for BigQuery SQL queries to validate transformation logic during development using synthetic data.

Skill Testing with Subagents

Applies the RED-GREEN-REFACTOR cycle to process documentation to ensure AI agents follow instructions under high-pressure scenarios.

Parallel Agent Dispatcher

Accelerates debugging by dispatching multiple independent Claude agents to investigate and resolve concurrent system failures.

Condition-Based Waiting

Eliminates flaky tests and race conditions by replacing arbitrary timeouts with intelligent state-based condition polling.

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries to make software bugs structurally impossible to reproduce.

Skill Reviewer and Enhancer

Audits and improves Claude Code skills to ensure adherence to official best practices and modern architectural patterns.

Skill Testing Framework

Verifies that AI process documentation and specialized skills are effective and resistant to rationalization by applying a test-driven development cycle to their creation.

End-to-End Testing

Provides expert guidance for writing resilient system-wide tests using user-facing locators, semantic helpers, and auto-retriable assertions.

Test-Driven Development (TDD) Mastery

Enforces a strict Red-Green-Refactor cycle to ensure all production code is verified by failing tests before implementation.

Web Security Standards

Enforces domain security protocols and research methodologies for managing WebFetch permissions and domain trustworthiness.

Verification Before Completion

Enforces rigorous, evidence-based verification before claiming any programming task or bug fix is complete.

Engineering Vibe Audit

Conducts a rigorous 20-metric technical audit to evaluate code quality, production readiness, and AI-generated slop.

Testing Test Writing

Implements Jest-based unit and integration testing patterns for backend services following a behavior-driven approach.

AI Slop Detector

Audits codebases to identify and remediate low-quality AI-generated patterns, security vulnerabilities, and hallucinated dependencies.

JavaScript Unit Testing Standards

Enforces standardized Jest unit testing patterns, configuration, and coverage requirements for CUI JavaScript projects.

TDD Patterns & Quality Heuristics

Implements stack-aware test-driven development patterns and quality heuristics to ensure AI-generated tests are resilient, meaningful, and comprehensive.

Zig Safety Checker

Identifies memory safety risks and undefined behavior in Zig code to ensure robust low-level implementation.

Skill TDD and Validation

Validates and refines process documentation using a Test-Driven Development cycle to ensure reliability under high-pressure scenarios.

Testing Skills With Subagents

Applies Test-Driven Development principles to process documentation to ensure agents follow complex rules under pressure without rationalizing failures.

Claude Code Permission Management

Validates and secures Claude Code settings through architectural patterns and security anti-pattern detection.

Full Stack Debugger

Identifies and resolves complex software issues across UI, backend, and database layers using a systematic, iterative debugging workflow.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within your development workflow.

Test-Driven Development (TDD) Guardrails

Enforces a rigorous Red-Green-Refactor workflow by requiring failing tests before any implementation code is written.