Security & Testing Claude 技能

Testing Summary & QA Handover

Generates structured, user-centric testing documentation by analyzing Linear issues and Git commits to streamline QA handovers.

QA Security Scanner

Conducts comprehensive security audits and vulnerability assessments using OWASP standards and remediation best practices.

Corder Test Generation

Generates comprehensive unit and integration tests using industry-standard patterns for JavaScript and Python environments.

Clay Data & Compliance Handler

Manages sensitive PII, data retention policies, and GDPR/CCPA compliance for Clay integrations.

Web3 Smart Contract Testing

Automates comprehensive smart contract testing using Hardhat and Foundry to ensure security, gas efficiency, and protocol reliability.

PostHog Security Basics

Implements robust security protocols for PostHog API keys, secret management, and environment-specific access controls.

Test Plan Architect

Generates structured, multi-level test plans and tracks verification progress across development sessions.

Retell AI Enterprise RBAC

Configures enterprise-grade access control, SSO integration, and role-based permissions for Retell AI platforms.

GDPR Data Compliance

Implements robust GDPR-compliant data handling, consent management, and automated data subject rights processing.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, mocking, and test-driven development best practices.

Test Refactoring & Maintainability

Refactors test suites to improve maintainability, reduce code duplication, and establish consistent testing patterns across projects.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen system defense-in-depth.

Python Anti-Pattern Reviewer

Identifies and corrects common Python coding mistakes, infrastructure flaws, and architectural anti-patterns to ensure production-grade code quality.

Solidity Smart Contract Security

Implements secure Solidity development patterns and best practices to safeguard Ethereum-based smart contracts against common vulnerabilities.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

Kubernetes Security Policies

Implement production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and RBAC configurations.

Temporal Python Testing

Implements robust testing strategies for Temporal workflows using pytest, time-skipping, and comprehensive activity mocking.

Systematic Debugging Strategies

Master methodical debugging techniques and root cause analysis to efficiently resolve bugs and performance issues across any technology stack.

Memory Forensics Guide

Facilitates advanced memory acquisition, process analysis, and artifact extraction for incident response and malware investigations.

SAST Security Configuration

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security policies within development workflows.

Memory Safety Patterns

Implements memory-safe programming patterns like RAII and ownership across Rust, C++, and C to prevent critical memory bugs.

WCAG Accessibility Audit Patterns

Conducts comprehensive WCAG 2.2 accessibility audits with automated testing integration and actionable remediation strategies.

Mutual TLS (mTLS) Configuration

Configures mutual TLS (mTLS) for secure, zero-trust service-to-service communication in cloud-native environments.

STRIDE Analysis Patterns

Applies the STRIDE methodology to systematically identify, categorize, and mitigate security threats during system design reviews.

Binary Analysis Patterns

Analyzes compiled binaries and assembly code to reconstruct program logic and data structures.

Attack Tree Construction

Builds systematic attack trees to visualize threat paths, identify defense gaps, and quantify security risks.

Protocol Reverse Engineering

Analyzes, documents, and deciphers network protocols using advanced packet inspection and traffic analysis techniques.

Screen Reader Accessibility Testing

Validates web application accessibility by providing comprehensive guides and checklists for major screen readers like NVDA, VoiceOver, and JAWS.

Bats Testing Patterns

Implements robust, production-grade unit testing for Bash and shell scripts using the Bash Automated Testing System (Bats) framework.

Auth Implementation Patterns

Implements secure authentication and authorization systems using JWT, OAuth2, and advanced access control patterns.