Security & Testing Claude 技能

SQL Injection Detector

Detects and remediates SQL injection vulnerabilities within your codebase using automated security scanning and pattern analysis.

Web Application Testing

Tests and debugs local web applications using automated Playwright scripts and integrated server lifecycle management.

Dependency Checker

Analyzes project dependencies to identify security vulnerabilities, outdated packages, and license compliance issues across multiple ecosystems.

Complete Test Coverage

Achieves 100% test coverage through progressive test writing, redundancy elimination, and automated fixture restructuring.

Rust Mocking & Unit Testing

Simplifies Rust unit testing by generating mock implementations for traits and external dependencies using the mockall crate.

Sandbox Manager

Configures and manages security sandboxing for Claude Code to ensure isolated and restricted execution of untrusted or sensitive code.

Pre-Commit Design Review

Validates TypeScript and React code against design principles, accessibility standards, and architectural best practices beyond what standard linters can enforce.

React Testing Patterns

Applies best practices for React and TypeScript testing by prioritizing user behavior, accessible queries, and realistic API mocking.

Smoke Test Runner

Executes automated smoke test suites to verify core application functionality and system health after deployments or updates.

Linter-Driven Development

Orchestrates a comprehensive development workflow for TypeScript and React by integrating design, automated testing, linting loops, and pre-commit reviews.

Refactoring

Enhances code maintainability and reduces complexity through autonomous linter-driven patterns like storifying and dependency rejection.

Security Audit Toolkit

Performs comprehensive client-side security assessments of web applications to identify vulnerabilities and compliance issues.

Pre-Commit Design Review

Performs expert-level design analysis to detect architectural debt, primitive obsession, and abstraction issues that automated linters cannot identify.

Linter-Driven Development

Orchestrates an autonomous Go development workflow by integrating design, testing, linting, and refactoring into a continuous quality-controlled pipeline.

SSE Event Router Testing

Automates the validation of Server-Sent Events (SSE) endpoints and real-time streaming logic in Hono.js applications.

Compliance Report Generator

Automates the creation of professional security and regulatory compliance reports within the Claude Code environment.

IDA Pro Plugin Packager

Streamlines the creation, validation, and distribution of IDA Pro plugins for the Hex-Rays Plugin Manager.

NestJS Authentication

Implements secure and idiomatic authentication and authorization systems in NestJS applications using JWT, guards, and role-based access control.

Input Validation Security

Protects applications by implementing exhaustive validation at trust boundaries and mitigating common injection vulnerabilities.

Defense-in-Depth Validation

Implements multi-layered data validation strategies to eliminate deep-system failures and make bugs structurally impossible.

CCG Code Guardian

Enhances development workflows with persistent memory, automated security guarding, and multi-agent coordination for complex repositories.

Security Code Review

Performs comprehensive security audits using source-to-sink methodology to identify vulnerabilities and provide remediation guidance.

Odoo Code Reviewer

Reviews Odoo 16.0 source code for security vulnerabilities, performance bottlenecks, and compliance with OCA coding standards.

Style Audit

Audits and rewrites code to align with CI/CD style rules, quality guidelines, and best practices while preserving functional correctness.

Node.js Jest Testing

Implements comprehensive testing suites for Node.js applications using Jest, covering unit tests, mocking, and API integration.

Theater Detection Audit

Identifies and replaces placeholder code, mock data, and incomplete implementations with production-ready logic to ensure codebase integrity.

JWT Authentication for Node.js

Implements secure JSON Web Token authentication with refresh token logic and role-based access control for Node.js applications.

Adversarial Fingerprint Testing

Validates Pivot pipeline fingerprinting by identifying code changes that bypass cache invalidation logic.

Code Verification Loop

Establishes a comprehensive multi-stage validation system to ensure code quality, security, and stability before production deployment or PR submission.

IDA Pro Headless Analysis

Performs automated binary analysis and reverse engineering using IDA Pro's modern Pythonic Domain API.