Security & Testing Claude 技能

SDD Plan Reviewer

Coordinates multiple AI models to provide structured, multi-dimensional feedback on technical specifications before implementation begins.

JavaScript Testing Patterns

Implement robust testing strategies for JavaScript and TypeScript using modern frameworks like Jest and Vitest.

Windsurf Enterprise RBAC & SSO

Implements enterprise-grade Single Sign-On (SSO) and role-based access control (RBAC) for Windsurf organizational management.

Web3 Smart Contract Testing

Automates and optimizes comprehensive testing for Solidity smart contracts using Hardhat and Foundry frameworks.

Auth Implementation Patterns

Implements secure, scalable authentication and authorization systems using industry-standard patterns like JWT, OAuth2, and RBAC.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection in source code.

Error Handling Patterns

Implements robust error handling strategies and resilient patterns like Circuit Breakers across multiple programming languages.

Temporal Python Testing

Streamlines testing for Temporal workflows and activities in Python using time-skipping, mocking, and determinism validation.

Debugging Strategies

Implements systematic debugging techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

Verification & Quality Assurance

Ensures codebase reliability and agent output accuracy through real-time truth scoring, automated quality checks, and intelligent Git-based rollbacks.

Rails Testing Suite

Provides comprehensive guidance and code patterns for writing robust RSpec and Minitest tests in Rails 7+ applications.

Beads Feature Verifier

Validates feature completion by auditing child tasks and executing comprehensive automated verification suites.

Verify Epic Completion

Validates project epic completion by auditing child features and executing cross-feature integration tests.

Verification & Quality Assurance

Ensures codebase reliability and agent output quality through automated truth scoring, multi-dimensional verification checks, and instant rollbacks.

Secrets Management for CI/CD

Secures sensitive credentials and automates secret rotation within CI/CD pipelines using industry-standard tools and cloud services.

Task Verification Utility

Verifies completion of Beads tasks by executing build system validation targets including tests, linting, and security checks.

CUI Java Unit Testing Expert

Standardizes and automates high-quality unit testing for CUI Java projects using JUnit 5 and specialized generator frameworks.

Web Application Testing

Automates the testing and debugging of local web applications using Playwright and lifecycle-managed servers.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Verification Before Completion

Enforces rigorous, evidence-based confirmation through command execution before any work is marked as complete or committed.

Probitas Setup

Initializes Probitas environments and configures end-to-end testing frameworks for your project.

CUI Marketplace Architecture

Enforces architectural standards and validation patterns for self-contained, compliant Claude Code marketplace components.

E2E Testing Patterns

Builds robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

Probitas Test Framework Helper

Simplifies backend E2E testing by providing instant documentation and implementation patterns for the Probitas framework.

CI/CD Secrets Management

Implements robust secrets management and security protocols for CI/CD pipelines across major cloud and native platforms.

JavaScript Testing Patterns

Implements robust testing strategies using Jest and Vitest to ensure high-quality, bug-free JavaScript and TypeScript codebases.

Trust Layer TDD

Enforces a strict test-driven development workflow to ensure code correctness through mandatory verification.

Security Scanning

Performs automated security audits to detect hardcoded secrets, OWASP vulnerabilities, and insecure dependency versions in codebases.

Systematic Test Debugger

Diagnoses failing tests through a structured workflow of stack tracing, input verification, and comprehensive reporting.

N8n Node Testing

Implements comprehensive testing strategies for n8n community nodes using Jest, HTTP mocking, and local environment validation.