Security & Testing Claude 技能

Auth0 Security Specialist

Implements and optimizes Auth0 security features including attack protection, multi-factor authentication, and advanced token security standards.

Test Coverage Mapping

Maps product features to test suites to identify critical testing gaps and perform risk-based quality analysis.

Deep Coverage Analysis

Analyzes test coverage in depth to identify uncovered lines, branches, and functions with actionable reporting.

Spec Validation Enforcer

Validates software specifications against requirements to ensure completeness, consistency, and testability within development workflows.

Accessibility Auditor

Performs comprehensive WCAG 2.1 AA accessibility audits to ensure web applications are inclusive and compliant.

Semgrep API & Fix Conventions

Standardizes Semgrep integrations with specific rules for API communication, security validation, and automated vulnerability remediation.

Visual Testing & Regression

Automates visual regression testing to detect UI inconsistencies across browsers and viewports using tools like Percy, Chromatic, and Playwright.

Mutation Testing

Measures test suite effectiveness by injecting artificial bugs into code to identify gaps in test coverage and logic.

Vamsa Testing Standards

Implements high-quality unit and E2E testing patterns for the Vamsa genealogy application using Vitest and Playwright.

Requirement Traceability Matrix

Generates comprehensive traceability matrices mapping requirements to test cases for complete software coverage visibility.

Promptfoo LLM Testing

Evaluates and compares LLM outputs using an automated testing framework to ensure prompt reliability and quality.

AI Test Generator

Generates comprehensive, multi-framework unit tests by analyzing code structure and identifying critical edge cases.

Security Design Patterns

Implements robust security layers including client-side encryption, API key management, and schema-based input validation.

Test Generation Engine

Generates comprehensive unit and integration tests across multiple programming languages by following local project conventions.

Feature Status Tracker

Automates the detection and counting of failing Gherkin features to orchestrate autonomous coding loops.

Azure Auth for React & Cloudflare Workers

Implements secure Microsoft Entra ID authentication for React SPAs and Cloudflare Workers using MSAL.js and serverless JWT validation.

Web Application Testing

Automates browser-based testing and UI verification for local web applications using Playwright.

Agent Evaluation Framework

Evaluates AI agent workflows and performance using a comprehensive framework based on Anthropic's best practices.

Testing Strategy & Implementation

Implements comprehensive software testing frameworks using standardized unit, integration, and performance testing patterns.

Datarails API Diagnostic & Field Test

Tests Datarails finance API field compatibility to optimize data aggregation performance and reliability.

Automated Code Review

Analyzes source code for quality, security vulnerabilities, and anti-patterns to ensure production-grade standards.

Testing Strategy

Defines comprehensive testing architectures including pyramid ratios, coverage targets, and implementation patterns for robust software quality.

Security Scan

Conducts comprehensive OWASP-style security audits to identify and remediate vulnerabilities within your codebase.

TDD Workflow

Automates the Red-Green-Refactor cycle to ensure code reliability and high-quality implementation through test-driven development.

Testing Strategy

Implements comprehensive testing architectures including unit, integration, and end-to-end tests using industry-standard patterns and coverage metrics.

TDD Workflow

Implements a strict Red-Green-Refactor methodology to ensure high-quality, tested code through automated multi-agent orchestration.

Automated Code Verification Loop

Validates code implementations against requirements through automated linting, testing, and requirement matching.

Security Scan

Performs comprehensive OWASP-style security audits to identify vulnerabilities and provide actionable remediation steps within your codebase.

Code Verification Loop

Verifies that code changes satisfy original requirements through automated syntax checks, testing, and regression scans.

End-to-End Testing & Automation

Generates and executes comprehensive end-to-end tests across multiple frameworks and browsers to ensure robust user journeys.