Security & Testing Claude 技能

Spring Boot Security Audit & Best Practices

Implements robust security patterns and automated audits for Spring Boot applications using industry-standard Spring Security practices.

Go Testing Patterns

Implements idiomatic Go testing patterns and TDD workflows for robust, high-coverage applications.

Python Testing Patterns

Implements a robust Python testing strategy using pytest, TDD methodology, and advanced mocking techniques to ensure code reliability.

Django Security Best Practices

Implements robust security patterns and production-ready configurations for Django applications to prevent common web vulnerabilities.

Spring Boot TDD Assistant

Implements robust Test-Driven Development workflows for Spring Boot applications using modern testing frameworks and high-coverage standards.

Test-Driven Development (TDD) Workflow

Enforces a rigorous test-driven development cycle to ensure 80%+ code coverage across unit, integration, and end-to-end tests.

Django TDD Pro

Implements a robust Test-Driven Development workflow for Django applications using pytest, factory_boy, and Django REST Framework.

Web App Testing & Playwright Automation

Facilitates end-to-end testing and browser automation for local web applications using Playwright and server lifecycle management.

CVE Intelligence Gathering

Systematically collects comprehensive security vulnerability data from multiple authoritative sources to build detailed CVE profiles.

OTE Migration Workflow

Automates the end-to-end migration of OpenShift component repositories to the OpenShift Tests Extension (OTE) framework.

Go Security Remediation Planning

Generates actionable, step-by-step remediation plans for security vulnerabilities in Go modules and applications.

Go Codebase CVE Impact Analysis

Evaluates Go projects for vulnerability exposure by performing multi-layered impact analysis and call graph reachability checks.

Go Call Graph Reachability Analysis

Performs deep call graph analysis to determine if vulnerable functions are reachable from program entry points.

Visual Testing & UI Verification

Automates visual audits and UI verification by capturing screenshots, analyzing DOM structures, and comparing live pages against design specifications.

SLB Secure Command Guard

Implements a two-person approval rule for destructive CLI commands executed by AI agents to prevent data loss and infrastructure damage.

Codex Oracle

Consults an external AI oracle (OpenAI Codex) for advanced code review and architectural planning.

CI Test Skill

Verifies the correct installation, structure, and parsing of Claude skills for PRPM integration testing.

CI Test Droid Skill

Verifies the correct installation of Droid skills for PRPM integration testing.

Systematic Bug Fixing

Automates a rigorous bug-fixing workflow including issue tracking, root-cause debugging, TDD regression testing, and verification.

Test Effectiveness Auditor

Audits test suites with Google Fellow SRE-level scrutiny to eliminate vanity metrics and identify real logic gaps.

Implementation Review Agent

Verifies completed code implementations against specifications using high-scrutiny, evidence-based audits to ensure production readiness.

Systematic Debugging

Implements a disciplined, four-phase debugging workflow using specialized agents to identify and resolve root causes of technical issues.

Parallel Agent Dispatcher

Dispatches multiple specialized agents concurrently to investigate and resolve three or more independent system failures.

Testing Anti-Patterns Guard

Enforces rigorous testing standards by preventing brittle mocks, production code pollution, and misunderstood dependency isolation.

Root Cause Tracing

Traces software bugs backward through the call stack to identify and resolve the original trigger instead of patching symptoms.

Strict Task Verification

Enforces rigorous evidence-based verification before any task, bug fix, or build is claimed as complete.

BiomeJS Configuration

Configures BiomeJS for code formatting and linting using best practices for monorepos, UI projects, and Git hooks.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor cycle to ensure all production code is verified by failing tests first.

Neon Auth Integration

Configures secure authentication, UI components, and social login for Next.js, React, and Node.js applications using Neon Auth.

Rust Mutation Testing

Analyzes Rust test suite effectiveness by injecting faults and measuring detection rates.