Security & Testing Claude 技能

Release Wolf - Production Readiness Check

Automates pre-deployment QA gates by scanning for secrets, auditing performance, verifying links, and performing visual regression checks.

Solidity Smart Contract Security

Implements secure Solidity development patterns and best practices to safeguard Ethereum-based smart contracts against common vulnerabilities.

Python Anti-Pattern Reviewer

Identifies and corrects common Python coding mistakes, infrastructure flaws, and architectural anti-patterns to ensure production-grade code quality.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen system defense-in-depth.

Cassandra Test Data Management

Generates and validates production-grade Cassandra 5.0 test data using Docker-based workflows for SSTable parsing and integration testing.

Systematic Debugging

Troubleshoots and resolves software defects using a structured diagnostic process and regression testing.

Python Code Review & Linting

Enhances Python code quality through automated Ruff linting, security vulnerability detection, and robust mypy type checking.

Pytest Modern Test Patterns

Implements standardized pytest structures including fixtures, parametrization, and the AAA pattern to build robust Python test suites.

Test Refactoring & Maintainability

Refactors test suites to improve maintainability, reduce code duplication, and establish consistent testing patterns across projects.

Privacy & Consent Compliance

Implements privacy-first development patterns to ensure GDPR and CCPA compliance through automated consent management and data minimization.

QA Strategy & Quality Metrics

Guides the implementation of robust testing pyramids and software maintainability metrics to reduce technical debt and improve code health.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, mocking, and test-driven development best practices.

GOAP Research & Ed25519 Verification

Conducts high-stakes research using Goal-Oriented Action Planning and cryptographic verification to prevent AI hallucinations and ensure source integrity.

Web Application Testing & Playwright Toolkit

Automates local web application testing and browser interaction using Playwright and managed server lifecycles.

Test Coverage Gap Analyzer

Analyzes codebase test coverage to identify missing tests and automatically generate BATS or pytest stubs.

Secure Data & Storage Management

Enforces best practices for database migrations, file storage security, SSRF protection, and sensitive data encryption.

Verified Research & GOAP Verification

Conducts high-stakes research using Goal-Oriented Action Planning and Ed25519 cryptographic signatures to eliminate hallucinations and verify source authenticity.

GDPR Data Compliance

Implements robust GDPR-compliant data handling, consent management, and automated data subject rights processing.

Pytest Test Writer

Automates the creation of comprehensive Python unit and integration tests using the pytest framework.

Compliance & System Validator

Automates comprehensive compliance checks, schema validation, and system audits to ensure code and documentation meet strict quality standards.

Retell AI Enterprise RBAC

Configures enterprise-grade access control, SSO integration, and role-based permissions for Retell AI platforms.

TypeScript Component Testing

Implements robust, accessible UI component tests using React Testing Library and modern TypeScript patterns.

Test Plan Architect

Generates structured, multi-level test plans and tracks verification progress across development sessions.

PostHog Security Basics

Implements robust security protocols for PostHog API keys, secret management, and environment-specific access controls.

Web3 Smart Contract Testing

Automates comprehensive smart contract testing using Hardhat and Foundry to ensure security, gas efficiency, and protocol reliability.

Security Auditor

Audits shell scripts and Python code to identify and remediate security vulnerabilities and anti-patterns.

Clay Data & Compliance Handler

Manages sensitive PII, data retention policies, and GDPR/CCPA compliance for Clay integrations.

Corder Test Generation

Generates comprehensive unit and integration tests using industry-standard patterns for JavaScript and Python environments.

Red/Blue Team Validator

Stress-tests decisions, strategies, and architectures through iterative adversarial Red/Blue team simulations to uncover and mitigate vulnerabilities.

GSD Systematic Debugger

Automates the debugging process using the scientific method through isolated subagents and persistent state tracking.