Security & Testing Claude 技能

Security CodeGuard

Enforces secure coding practices through mandatory CodeGuard security audits and OWASP-compliant implementation patterns.

Testing & TDD Quality Assurance

Implements high-quality testing strategies including TDD, the AAA pattern, and comprehensive test coverage targets for robust software development.

Complete Skill Validation

Validates skill parsing capabilities by providing a fully populated template with diverse tool permissions.

Systematic Debugging

Implements a rigorous, step-by-step methodology for isolating, fixing, and validating software bugs and test failures.

Tech Lead Code Reviewer

Enforces technical standards and manages engineering workflows by validating code implementations against architectural specifications.

GCP Project Auditor

Conducts comprehensive security and compliance audits of Google Cloud Platform projects to identify misconfigurations and excessive permissions.

Vault Operations

Automates HashiCorp Vault administration, secret management, and secure identity-based access control.

Security & Privacy Engineering

Manages security policies, privacy compliance, vendor assessments, and incident response coordination for technical organizations.

Plugin Tester for Violet

Validates and audits Violet AI plugins to ensure structural integrity, schema compliance, and content quality before deployment.

Keycloak IAM Manager

Manages Keycloak identity and access systems including realms, clients, authentication flows, and user federation.

Global Validation

Implements comprehensive end-to-end data validation and sanitization across client and server layers to ensure application security and data integrity.

E2E Tester

Executes automated end-to-end test scenarios for terminal-based applications by simulating human player interactions and verifying outputs.

Web App Testing & Playwright Automation

Automates local web application testing and frontend verification using Playwright and managed server lifecycles.

.NET Test Runner

Executes .NET unit tests, generates code coverage reports, and runs performance benchmarks using the dotnet CLI.

Web Application Testing

Automates end-to-end testing and UI debugging for local web applications using Playwright and server lifecycle management.

Pre-Commit Validator

Automates pre-commit checks for TypeScript type safety, test execution, code coverage, and Git branch compliance.

Backend Test-Driven Development

Guides the development of NestJS backends using a strict, iterative Test-Driven Development (TDD) methodology.

TypeScript Expert

Applies expert-level guidelines to write, review, and refactor TypeScript code for maintainability, type safety, and performance.

Validation Checklist

Guides software projects through a standardized pre-delivery validation process for backend and frontend code.

SEMO Integrated Quality Audit

Audits the entire SEMO monorepo for package quality, standards compliance, and structural inefficiencies.

SEMO Package Validator

Validates the structural integrity and rule compliance of SEMO framework packages and Sub-Agents.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, advanced mocking, and test-driven development (TDD) patterns.

Sandbox Test Runner

Executes interactive sandbox tests for Claude Code skills and commands in isolated environments to validate functionality and prevent regressions.

QA Validation & Acceptance Testing

Validates code implementations against specific test cases and acceptance criteria to ensure functional correctness and production readiness.

Vue Development & TDD Workflow

Enforces a strict test-driven development cycle for Vue 3 and Nuxt 3, featuring automated E2E test generation from Gherkin acceptance criteria.

Temporal Python Testing

Streamlines testing for Temporal workflows and activities in Python using time-skipping, mocking, and determinism validation.

Web3 Smart Contract Testing

Automates and optimizes comprehensive testing for Solidity smart contracts using Hardhat and Foundry frameworks.

Solidity Security & Smart Contract Patterns

Implements industry-standard security patterns and audits smart contracts to prevent common blockchain vulnerabilities and exploits.

PCI Compliance & Payment Security

Implements PCI DSS standards and secure payment processing workflows to protect sensitive cardholder data and ensure regulatory compliance.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce secure coding standards.