Security & Testing Claude 技能

AIOS Quality Advisor & Test Architect

Automates comprehensive quality gate reviews, risk assessments, and test architecture analysis to ensure software reliability.

Auth Implementation Patterns

Implements secure authentication and authorization systems using JWT, OAuth2, and advanced access control patterns.

Bats Testing Patterns

Implements robust, production-grade unit testing for Bash and shell scripts using the Bash Automated Testing System (Bats) framework.

Screen Reader Accessibility Testing

Validates web application accessibility by providing comprehensive guides and checklists for major screen readers like NVDA, VoiceOver, and JAWS.

Protocol Reverse Engineering

Analyzes, documents, and deciphers network protocols using advanced packet inspection and traffic analysis techniques.

Attack Tree Construction

Builds systematic attack trees to visualize threat paths, identify defense gaps, and quantify security risks.

Binary Analysis Patterns

Analyzes compiled binaries and assembly code to reconstruct program logic and data structures.

STRIDE Analysis Patterns

Applies the STRIDE methodology to systematically identify, categorize, and mitigate security threats during system design reviews.

Mutual TLS (mTLS) Configuration

Configures mutual TLS (mTLS) for secure, zero-trust service-to-service communication in cloud-native environments.

WCAG Accessibility Audit Patterns

Conducts comprehensive WCAG 2.2 accessibility audits with automated testing integration and actionable remediation strategies.

Memory Safety Patterns

Implements memory-safe programming patterns like RAII and ownership across Rust, C++, and C to prevent critical memory bugs.

SAST Security Configuration

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security policies within development workflows.

Memory Forensics Guide

Facilitates advanced memory acquisition, process analysis, and artifact extraction for incident response and malware investigations.

Systematic Debugging Strategies

Master methodical debugging techniques and root cause analysis to efficiently resolve bugs and performance issues across any technology stack.

Temporal Python Testing

Implements robust testing strategies for Temporal workflows using pytest, time-skipping, and comprehensive activity mocking.

Kubernetes Security Policies

Implement production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and RBAC configurations.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

Solidity Smart Contract Security

Implements secure Solidity development patterns and best practices to safeguard Ethereum-based smart contracts against common vulnerabilities.

Python Anti-Pattern Reviewer

Identifies and corrects common Python coding mistakes, infrastructure flaws, and architectural anti-patterns to ensure production-grade code quality.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen system defense-in-depth.

Test Refactoring & Maintainability

Refactors test suites to improve maintainability, reduce code duplication, and establish consistent testing patterns across projects.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, mocking, and test-driven development best practices.

GDPR Data Compliance

Implements robust GDPR-compliant data handling, consent management, and automated data subject rights processing.

Retell AI Enterprise RBAC

Configures enterprise-grade access control, SSO integration, and role-based permissions for Retell AI platforms.

Test Plan Architect

Generates structured, multi-level test plans and tracks verification progress across development sessions.

PostHog Security Basics

Implements robust security protocols for PostHog API keys, secret management, and environment-specific access controls.

Web3 Smart Contract Testing

Automates comprehensive smart contract testing using Hardhat and Foundry to ensure security, gas efficiency, and protocol reliability.

Clay Data & Compliance Handler

Manages sensitive PII, data retention policies, and GDPR/CCPA compliance for Clay integrations.

Corder Test Generation

Generates comprehensive unit and integration tests using industry-standard patterns for JavaScript and Python environments.

QA Security Scanner

Conducts comprehensive security audits and vulnerability assessments using OWASP standards and remediation best practices.