Security & Testing Claude 技能

GitHub Code Review

Performs comprehensive, multi-agent code reviews on GitHub pull requests using specialized AI swarms for security, performance, and architecture analysis.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure reliable user journeys and zero regressions.

Test-Driven Development (TDD) Workflow

Enforces a strict Red-Green-Refactor cycle to ensure code reliability through mandatory test-first implementation.

GitHub Code Review Swarm

Orchestrates specialized AI agents to perform comprehensive, automated code reviews covering security, performance, and architecture within GitHub pull requests.

Code Review Expert

Conducts comprehensive code reviews focusing on security, performance, maintainability, and architectural best practices.

Quality Gate for Task Master

Enforces code quality standards by running linting, type-checking, and test suites before tasks can be marked as completed.

Nixtla Test Generator

Generates comprehensive pytest suites from functional requirements to automate test scaffolding for Nixtla-based plugins and pipelines.

Verification & Quality Assurance

Maintains codebase integrity through real-time truth scoring, automated security checks, and intelligent rollback mechanisms.

Security Test Scanner

Automates comprehensive security vulnerability scans and penetration tests for applications and APIs using OWASP standards.

Plugin Self-Tester

Runs comprehensive self-tests to verify plugin integrity, validate agent routing, and ensure hook compatibility within the PopKit ecosystem.

ThinkDeep Reasoning & Investigation

Conducts systematic multi-step investigations using hypothesis tracking and progressive confidence modeling to solve complex technical problems.

Playwright AI Test Team

Orchestrates a multi-agent AI team to perform comprehensive end-to-end web testing, accessibility audits, and performance analysis.

Test Data Generator

Generates realistic, schema-compliant test data to populate databases and simulate user behavior for comprehensive software testing.

Accessibility Checker CI

Integrates automated WCAG accessibility testing and reporting into CI/CD pipelines using industry-standard tools like axe-core and pa11y-ci.

.NET Unit Testing Patterns

Implements standardized unit testing architectures for .NET applications using xUnit, Moq, and FluentAssertions.

CSP Config Generator

Generates and implements strict Content Security Policy (CSP) configurations for Next.js applications to mitigate XSS risks and control resource loading.

Playwright Multi-Agent Testing

Executes comprehensive web application test suites using five specialized agents to validate functionality, UI, APIs, and performance.

Ralph Loop: Iterative Development

Automates a rigorous test-driven development cycle for AI agents by looping through implementation, testing, and debugging until all checks pass.

Go Testing Pro

Implements industry-standard Go testing patterns and best practices to ensure code reliability and maintainability.

Assertion Helper

Generates precise, context-aware assertions for unit and integration tests by analyzing function logic and data structures.

Strategic Test Writing

Implements a priority-driven testing strategy that focuses on core user flows and critical paths to maintain development velocity.

Testing Prime

Automatically detects and configures project testing frameworks to streamline AI-driven test execution and debugging.

Solidity Security & Smart Contract Audit

Implements industry-standard security patterns and vulnerability mitigations for Solidity smart contracts to prevent high-risk exploits.

Systematic Debugging

Enforces a rigorous four-phase debugging protocol that prioritizes root cause identification over quick, symptom-based patches.

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and role-based access control patterns.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Root Cause Tracing

Systematically traces bugs backward through the execution chain to identify and resolve original triggers rather than treating immediate symptoms.

.NET Backend Testing

Implements standardized testing patterns for .NET backend services using xUnit, Moq, and FluentAssertions.

Load Balancer Tester

Validates and stress-tests load balancer configurations, including traffic distribution, failover mechanisms, and session persistence.

Debugging Strategies & Root Cause Analysis

Master systematic debugging techniques and profiling tools to efficiently resolve bugs and performance bottlenecks across any technology stack.