Security & Testing Claude 技能

Forensic Analyst

Conducts comprehensive digital forensics investigations, reconstructs attack timelines, and analyzes system artifacts using LimaCharlie's security operations capabilities.

API Test Generator

Generates production-ready API test suites using native unit test frameworks directly within your existing codebase.

SMTP Penetration Testing

Conducts comprehensive security audits of SMTP servers to identify vulnerabilities like open relays, user enumeration flaws, and weak authentication.

Data Consistency Verifier

Validates TypeScript types, Zod schemas, and mock data against business rules to ensure structural and logical integrity.

Dogfood QA Explorer

Conducts systematic exploratory QA testing on web applications to identify bugs and UX issues with comprehensive reproduction evidence.

Test Smell Detector

Detects and refactors test anti-patterns, flaky indicators, and quality issues across multiple programming languages and frameworks.

Plan-to-Code Sync Verifier

Verifies that planning document updates are accurately synchronized across all implementation layers of your codebase.

Comprehensive Code Review

Performs a rigorous 7-point code audit covering security, performance, and maintainability to ensure production-grade software quality.

Integrated Implementation Verifier

Orchestrates the sequential execution of all domain-specific verification skills to generate comprehensive code quality reports and automated fixes.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor workflow to ensure all production code is verified by failing tests first.

Production Module Verifier

Validates the structural integrity and coding standards of production management modules to ensure consistency across components, types, and routing.

Routing Consistency Validator

Validates routing configurations and navigation link integrity within complex frontend application architectures.

Systematic Debugging

Enforces a rigorous, root-cause-first approach to technical troubleshooting and bug resolution.

SOX Compliance Audit

Generates professional SOX compliance audit reports and detailed Excel evidence packages for financial internal controls.

Secure Dependency Auditor

Audits software dependencies across multiple programming languages for security vulnerabilities, license compliance, and maintenance risks.

GDPR & DSGVO Compliance Expert

Automates GDPR and German DSGVO compliance by scanning codebases for privacy risks and generating required legal documentation.

Risk Analyzer

Analyzes code changes and repository health to calculate risk scores, map impact areas, and prioritize testing strategies.

TestRail Integration for Playwright

Synchronizes Playwright automation tests with TestRail management to automate result reporting and test case generation.

Verification Before Completion

Enforces a rigorous evidence-based verification protocol before claiming tasks are complete or committing code.

End-to-End Testing Pro

Automates and manages end-to-end testing workflows using Playwright and Cypress to ensure robust user flows across all major browsers.

Work Verification & Fact-Checker

Ensures the accuracy of AI outputs by systematically cross-referencing all claims with file-based evidence and real-world data.

CORS Policy Validator

Validates Cross-Origin Resource Sharing (CORS) configurations to identify security vulnerabilities and misconfigurations.

Playwright Pro Setup

Automates the initialization of production-ready Playwright end-to-end testing environments tailored to your specific web framework.

OWASP Security Test Generator

Generates comprehensive, OWASP-aligned security test cases and payloads for web applications and APIs.

Test Coverage Analyzer

Analyzes codebases to identify untested functions, API endpoints, and missing edge cases using static analysis and coverage reports.

API Service Test Generator

Generates comprehensive multi-step, scenario-based service tests from OpenAPI and Swagger specifications using intelligent data chaining.

Playwright E2E Test Generator

Generates resilient end-to-end browser and API test suites using the Playwright ecosystem and industry best practices.

Test Coverage Mapping

Maps product features to test suites to identify critical testing gaps and perform risk-based quality analysis.

Deep Coverage Analysis

Analyzes test coverage in depth to identify uncovered lines, branches, and functions with actionable reporting.

Spec Validation Enforcer

Validates software specifications against requirements to ensure completeness, consistency, and testability within development workflows.