Security & Testing Claude 技能

Go BDD Testing (Ginkgo & Gomega)

Implements behavior-driven development (BDD) testing patterns in Go using the Ginkgo framework and Gomega matcher library.

OpenSpec Change Verifier

Verifies that code implementations align perfectly with specifications, tasks, and design documents before archiving changes.

OpenSpec Change Verifier

Validates that code implementations perfectly align with specifications, tasks, and design artifacts before archiving changes.

Professional Test Architect

Designs and implements robust, comprehensive software tests using industry-standard design patterns and heuristics.

Software Test Design & Implementation

Designs and implements comprehensive software tests using systematic heuristics and industry-standard patterns.

LimaCharlie D&R Rule Builder

Architects, validates, and troubleshoots LimaCharlie Detection & Response (D&R) rules for real-time security event monitoring and automated remediation.

Game Theory for Crypto

Analyzes and designs incentive structures, tokenomics, and governance mechanisms for blockchain protocols using advanced game theory principles.

Dependency Security

Performs comprehensive security audits and vulnerability scanning for npm-based JavaScript projects.

CLI Safety Guardrails

Enforces strict safety policies and approval workflows for CLI operations to prevent destructive actions and credential leakage.

ChatGPT CLI Safety Guardrails

Enforces security policies and safety guardrails for ChatGPT CLI operations to prevent destructive actions and credential leaks.

Foundry Blockchain Development

Facilitates rapid Ethereum smart contract development, testing, and deployment using the Rust-based Foundry toolkit.

Agent Identity

Establishes cryptographic identities and on-chain verification for AI agents to prove authenticity and cross-platform authorship.

Deep System Analysis

Performs systematic investigations into codebases, architectures, and complex bugs to identify root causes and provide actionable recommendations.

Accessibility Audit

Audits web projects for WCAG 2.1 compliance by identifying issues with contrast, ARIA roles, keyboard navigation, and form labels.

RBAC Permissions Architect

Architects secure, multi-tenant features using modular RBAC, workspace isolation, and CASL-integrated permission mapping.

Golang Testing Patterns

Implements idiomatic Go testing patterns including table-driven tests, benchmarks, and fuzzing using TDD methodology.

GDPR Data Compliance & Privacy

Implements standardized GDPR-compliant data handling workflows including consent management, data subject rights, and automated retention policies.

Protocol Reverse Engineering

Analyzes, documents, and dissects network protocols using advanced packet capture and binary analysis techniques.

Screen Reader Accessibility Testing

Validates web application accessibility by providing standardized testing procedures and command references for major screen readers including VoiceOver, NVDA, and JAWS.

Anti-Reversing Techniques

Analyzes and bypasses software protection mechanisms, including anti-debugging, obfuscation, and anti-VM techniques for authorized security research.

Bats Testing Patterns

Implements comprehensive unit testing for shell scripts using the Bash Automated Testing System (Bats) framework.

JavaScript Testing Patterns

Implements robust testing architectures for JavaScript and TypeScript projects using Jest, Vitest, and modern best practices.

Security Requirement Extraction

Transforms abstract threat models into actionable security requirements, user stories, and test specifications.

WCAG Accessibility Audit & Compliance

Conducts comprehensive WCAG 2.2 accessibility audits and provides actionable remediation strategies for web applications.

Binary Analysis Patterns

Master reverse-engineering through disassembly, decompilation, and structural pattern recognition in compiled binaries.

Python Testing Patterns

Implements robust Python testing suites using pytest, advanced fixtures, and comprehensive mocking strategies.

Debugging Strategies

Employs systematic debugging techniques and profiling tools to identify and resolve complex code issues across any technology stack.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen application defense-in-depth.

Temporal Python Testing

Provides comprehensive strategies and patterns for testing Temporal workflows using pytest, time-skipping, and determinism validation.

Attack Tree Construction

Builds systematic attack tree visualizations and threat path analyses to identify security vulnerabilities and defense gaps.