Security & Testing Claude 技能

TypeScript Testing Standards

Enforces a flat, mock-minimal unit testing architecture for Vitest and Jest in TypeScript projects.

SOC Alert Fatigue Reduction

Optimizes Security Operations Center efficiency by implementing risk-based alerting and systematic detection rule tuning to minimize false positives.

TypeScript Type Checker

Executes comprehensive TypeScript type checks using specialized sub-agents or CLI fallbacks to ensure code integrity.

Cloud Workload Protection Implementation

Implements runtime security monitoring and threat detection for cloud compute workloads on AWS and Google Cloud.

CodeQL Static Analysis Handbook

Performs advanced interprocedural static analysis and complex data flow tracking to identify deep-seated security vulnerabilities.

Indicator Lifecycle Management

Manages the full lifecycle of Indicators of Compromise (IOCs) from initial discovery through validation, deployment, and automated retirement.

Security Chaos Engineering

Automates controlled security failure experiments to validate the effectiveness of detection systems and incident response protocols.

TypeScript Test Runner

Automates TypeScript test execution using specialized agents with intelligent command fallback mechanisms.

Network Traffic Analysis with Arkime

Deploys and queries Arkime to perform full packet capture analysis, detect C2 beaconing, and identify suspicious network flows.

Playwright E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright, Page Object Models, and CI/CD integration best practices.

Verification Before Completion

Enforces a mandatory evidence-based verification workflow before any task is marked as complete or successful.

Phased Review Workflow

Conducts automated multi-stage code reviews and security audits with parallel sub-agents and gated test verification.

Helm Deployment Security

Secures Kubernetes deployments by validating Helm chart integrity and scanning templates for security misconfigurations.

Verified Completion Workflow

Enforces rigorous, evidence-based verification protocols before any task is marked as complete or committed to a repository.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure all production code is verified by failing automated tests before implementation.

Systematic Debugging

Enforces a rigorous, four-phase methodology to identify root causes and implement reliable fixes for software defects.

GraphQL Depth Limit Security Testing

Identifies and tests GraphQL API denial-of-service vulnerabilities through recursive nesting and query complexity analysis.

Test-Driven Development (TDD) Workflow

Enforces a strict Red-Green-Refactor cycle to ensure code reliability and high-quality software design.

Hardening Docker Containers for Production

Secures Docker environments by implementing CIS Benchmark standards and industry-leading container hardening practices.

Web Vulnerability Triage & Risk Rating

Triages web application vulnerability findings from DAST and SAST scanners using the OWASP Risk Rating Methodology to prioritize remediation efforts.

MISP Threat Intelligence Aggregator

Automates the deployment and management of MISP to aggregate, correlate, and distribute threat intelligence feeds across security infrastructures.

BeyondCorp Zero Trust Implementation

Implements Google's BeyondCorp zero trust security model to replace traditional VPNs with identity-aware, context-based access controls.

Gamma Data Compliance & Privacy

Automates data privacy, GDPR compliance, and retention policies for Gamma integrations.

Ideogram Enterprise RBAC

Configures role-based access control, SSO integration, and credit-based budget management for Ideogram AI image generation.

Web Security Headers Audit

Audits web application HTTP response headers to identify missing or misconfigured security protections like CSP, HSTS, and Secure cookies.

Fuzzing Dictionary Techniques

Optimizes fuzzer performance by providing domain-specific tokens to guide parsers and protocol handlers toward deeper code paths.

Deepgram Enterprise RBAC

Implements secure role-based access control and API key management for enterprise Deepgram integrations.

Cloudflare DDoS Mitigation Implementation

Configures multi-layer Cloudflare security controls to protect web infrastructure from volumetric, protocol, and application-layer DDoS attacks.

Wycheproof Cryptographic Testing

Validates cryptographic implementations against a comprehensive library of known attack vectors and edge cases.

Retell AI Performance & Scaling

Optimizes Retell AI integrations through automated load testing, Kubernetes auto-scaling configurations, and data-driven capacity planning.