Security & Testing Claude 技能

Temporal Python Testing

Implements comprehensive testing patterns for Temporal workflows using pytest, featuring time-skipping and determinism validation.

CodeRabbit Review

Performs automated code reviews via the CodeRabbit CLI to detect bugs, security issues, and performance improvements in local changes.

Bats Shell Testing Patterns

Implements comprehensive unit testing for shell scripts using the Bash Automated Testing System (Bats) framework.

Claude Hookify: Custom Guardrails

Enforce custom safety rules and coding standards in Claude Code using declarative hooks and automated triggers.

Secrets Management & CI/CD Security

Implements secure secrets handling for CI/CD pipelines using industry-standard tools like Vault, AWS Secrets Manager, and platform-native solutions.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

Web3 Smart Contract Testing

Provides comprehensive testing strategies for Ethereum smart contracts using Hardhat and Foundry to ensure security, reliability, and gas efficiency.

Secure Auth & Access Control Patterns

Implements secure authentication and authorization systems using JWT, OAuth2, and role-based access control (RBAC) patterns.

GDPR Auditor

Analyzes codebases and system documentation to identify GDPR compliance gaps, data protection risks, and privacy policy inconsistencies.

Temporal Python Testing

Streamlines Temporal workflow testing in Python through automated time-skipping, activity mocking, and determinism validation.

Kubernetes Security Policy Expert

Implements production-grade Kubernetes security configurations including NetworkPolicies, RBAC, and Pod Security Standards.

Solidity Security & Audit

Master smart contract security best practices to prevent common vulnerabilities and implement secure Solidity patterns.

Cloudflare Security Checker

Validates Cloudflare Workers security patterns in real-time to prevent vulnerabilities and enforce serverless best practices.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using Jest, Vitest, and modern testing libraries.

Implementation Verifier

Validates implemented code against PRD requirements to ensure architectural integrity and zero-omission compliance.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

PCI Compliance & Secure Payments

Implements PCI DSS standards and secure payment handling patterns to protect sensitive cardholder data.

Ark Vulnerability Fixer

Streamlines CVE research and security patch workflows for Ark using CIRCL API integration and automated dependency analysis.

Maven Build and Test Strategy

Orchestrates parallel Maven builds and intelligent test execution for complex Java and Scala projects.

Auth Security Validator

Validates authentication and session management configurations against OWASP security standards to prevent common vulnerabilities.

Python Testing Patterns

Implements robust Python testing strategies using pytest, mocking, and test-driven development best practices.

Coverport Integration

Integrates the `coverport` tool into Go repositories to collect and upload end-to-end test coverage data to Codecov via Tekton pipelines.

Spec Validator

Validates code implementations against technical specifications to ensure requirement coverage, test compliance, and documentation accuracy.

Global Security

Guides AI-assisted coding to adhere to established global security standards and best practices.

Ark Chainsaw Testing

Executes and scaffolds end-to-end Ark resource tests using the Chainsaw framework and mock-LLM configurations.

Faber Evaluate

Automates the testing and quality review phase of the FABER workflow to ensure code meets specifications before release.

Workflow Validator

Validates Claude agentic workflows to ensure compliance with architectural patterns and the Manager-as-Agent principle.

Testing Infrastructure

Implements comprehensive testing infrastructure and patterns for monorepos using Vitest, React Testing Library, and Storybook.

Architecture Validator

Validates Claude Code project architectures against Fractary standards for Manager-as-Agent and Director-as-Skill patterns.

Claude Code Permission Manager

Configures granular tool permissions and security rules within Claude Code to protect sensitive files and manage access.