Security & Testing Claude 技能

Implementation Verifier

Ensures code implementations strictly adhere to PRD requirements by validating architectural boundaries and package dependencies.

LimaCharlie Extension Developer

Guides the development, testing, and deployment of custom LimaCharlie extensions to integrate third-party tools and automate security workflows.

Systematic Debugging

Enforces a rigorous four-phase framework to identify root causes and verify solutions for complex software bugs and test failures.

File Deleter

Replaces standard deletion commands with a safe, recoverable trash system that preserves directory structure and prevents accidental data loss.

Testing Coverage Standards

Implements and maintains rigorous testing coverage standards to ensure code reliability and quality throughout the development process.

Testing Coverage Optimizer

Enforces standardized testing coverage protocols to ensure code reliability and adherence to project quality metrics.

Engineering Constraint Verification

Verifies business constraints and invariants by generating formal proofs or planning runtime validation checks.

Hashing Passwords

Enforces industry-standard security protocols for credential handling and password hashing to prevent critical authentication vulnerabilities.

Python Testing Patterns

Implements robust Python testing suites using pytest, advanced mocking strategies, and test-driven development best practices.

TDD Failure Recovery

Manages unexpected test behaviors and implements structured recovery protocols during the Test-Driven Development cycle.

Onvifscan Security Scanner

Audits ONVIF-enabled IP cameras and IoT devices for authentication vulnerabilities and weak credentials.

Auto Testing

Automatically generates and executes comprehensive test suites after every code modification to ensure application stability.

Kiro Spec Detector

Identifies modified Kiro specification files by comparing current branch changes against a base branch for optimized testing.

Multi-System SSO Authentication

Implements secure enterprise Single Sign-On across multiple identity providers using JWT RS256 token validation, backward verification, and cross-system permission mapping.

Root Cause Tracing

Systematically identifies the origin of deep-seated bugs by tracing execution flow backward through the call stack to the original trigger.

Test-Driven Development (TDD)

Enforces a disciplined red-green-refactor workflow by automating test-first development requirements and coverage gate configuration.

Codebase Auditor

Audits code repositories for security, quality, and technical debt using modern engineering standards like OWASP and SOLID.

TDD Planning & Testing

Enforces a rigorous, phase-based Test-Driven Development workflow for bash script development using Vitest and automated logs.

Mutation Testing Analysis

Evaluates and improves test suite effectiveness by introducing deliberate code changes to identify weak tests and unverified logic.

CA Django Tests

Automates Django unit testing and coverage reporting for Consumer Affairs repositories to ensure 100% code quality and CI compliance.

PHP Test Writer

Generates and refactors structured PHP tests for Laravel applications using project-specific conventions and best practices.

Claude.md Auditor

Audits and optimizes CLAUDE.md project configurations to ensure security compliance and peak LLM performance.

Website Review

Conducts comprehensive QA reviews of websites by automating visual inspection, error detection, accessibility audits, and performance testing.

Chaos Gremlin Problem Solver

Challenges standard coding conventions and identifies obscure edge cases using unconventional, creative problem-solving patterns.

Playwright E2E Testing & Visual Debugging

Automates the Playwright end-to-end testing lifecycle with LLM-powered visual analysis and actionable fix recommendations.

IoT UART Console (picocom)

Interacts with IoT device UART consoles for security auditing, hardware enumeration, and serial-based penetration testing.

Codex Code Reviewer

Performs comprehensive, high-reasoning code reviews to identify bugs, security vulnerabilities, and performance bottlenecks before you commit.

Accessibility Auditor

Audits React and TypeScript applications for WCAG 2.2 Level AA compliance using risk-based severity scoring and MUI-specific awareness.

Test Compliance Validator

Validates test code quality by detecting fake success patterns, improper mocking, and ensuring robust integration testing standards.

AI Council Code Review

Performs multi-engine code reviews using Codex and Gemini to detect bugs, security vulnerabilities, and quality issues.