Security & Testing Claude 技能

Security Awareness Expert

Protects users and systems by identifying phishing attempts, verifying domains, and preventing credential leaks before actions are taken.

Golang Testing Standards

Implements industry-standard unit testing, table-driven tests, and mocking patterns for Go projects.

Hookify Guardrails & Rules

Configures custom validation rules and automated guardrails for the Hookify Claude plugin to enforce coding standards and prevent dangerous actions.

Solidity Security Auditor

Conducts comprehensive security audits of Solidity smart contracts using a structured four-phase vulnerability scanning workflow.

Swift Testing Expert

Guides developers through writing, migrating, and optimizing modern Swift Testing suites with best-practice macros and parallel-safe patterns.

Go Development Guidelines

Implements idiomatic Go patterns and Test-Driven Development workflows to build robust, maintainable cloud-native applications.

Security Review

Conducts systematic, confidence-based security audits to identify and remediate exploitable vulnerabilities in code and infrastructure.

WooYun Security Methodology

Provides expert-level web vulnerability testing strategies and checklists derived from nearly 90,000 real-world security cases.

FFUF Web Fuzzing

Streamlines web application fuzzing and discovery using ffuf for security audits and penetration testing.

OpenAI Security Best Practices

Performs language-specific security reviews and implements secure-by-default coding patterns for Python, JavaScript, and Go projects.

Security Ownership Mapper

Analyzes git history to map security ownership, calculate bus factors, and identify risks in sensitive codebases.

OpenAI Security Threat Model

Generates repository-grounded AppSec threat models by analyzing trust boundaries, assets, and potential abuse paths.

Ghidra Headless Analysis

Automates binary reverse engineering and decompilation using Ghidra to extract C code, symbols, and call graphs.

Nuxt Better Auth

Simplifies authentication implementation in Nuxt 4+ applications using the Better Auth framework and NuxtHub.

Playwright Testing Pro

Implements robust end-to-end testing suites using Playwright with best practices for browser automation and test stability.

Testing Patterns

Automates integration testing using declarative YAML specs and context-preserving sub-agents for MCP servers, APIs, and browsers.

Deep Debug

Executes a multi-agent investigation to resolve complex software bugs through parallel evidence gathering and cross-referenced analysis.

Firebase Authentication

Automates the implementation of secure Firebase Authentication flows, including social sign-in, multi-factor auth, and session management.

AI Code Reviewer

Automates comprehensive code analysis to detect bugs, security vulnerabilities, and quality issues with actionable feedback.

Axiom iOS Testing Router

Orchestrates comprehensive testing workflows for Apple platforms, covering unit tests, UI automation, and advanced asynchronous debugging.

Code Security & Quality Audit

Performs comprehensive security scans and code quality assessments to identify vulnerabilities, exposed secrets, and technical debt.

Quality Gates & Iteration Loops

Implements structured validation checkpoints, automated feedback loops, and multi-model consensus to ensure production-grade code quality.

Invalid Frontmatter Tester

Provides a deliberately malformed configuration to test error handling and validation logic in Claude Code plugin loaders.

Plugin Validation & Testing

Validates skill parsing logic and integration workflows for Claude Code plugin development.

Test Coverage Analyzer

Performs on-demand test coverage analysis to identify untested code paths and improve software quality across multiple tech stacks.

Feature Next

Orchestrates a structured feature-driven development workflow using a TDD-enforced cycle to ensure code quality and implementation accuracy.

Validation & Quality Orchestrator

Validates technical specifications, code implementations, and governance compliance using a multi-perspective agentic approach.

Intelligent Debugging Partner

Diagnoses and resolves complex software bugs using a scientific approach and agentic root cause analysis.

Automated Test & Ownership Enforcer

Executes, fixes, and verifies test suites while enforcing strict code ownership to ensure a 100% passing codebase.

Risk Classification

Classifies task risk levels using a 4-tier model and automated verification gates to ensure safe AI agent execution.