Security & Testing Claude 技能

Breenix CI Failure Analysis

Analyzes and diagnoses GitHub Actions CI/CD failures for Breenix kernel development, identifying root causes like kernel panics, page faults, and test timeouts.

Test Skill

Validates the execution of PostToolUse hooks to ensure proper skill invocation and system integration.

Design Document Audit Scoring

Evaluates technical design documents and Statements of Work (SOW) using a rigorous 100-point scoring system to ensure high-quality implementation specs.

Claude Hookify: Custom Guardrails

Enforce custom safety rules and coding standards in Claude Code using declarative hooks and automated triggers.

DevSecOps Security Integration

Integrates automated security scanning, secrets management, and policy-as-code directly into the software development lifecycle.

Code Readability Reviewer

Optimizes code clarity and minimizes cognitive load using Miller's Law and readable code principles.

Reviewing Security (OWASP Top 10)

Conducts comprehensive security audits and code reviews based on OWASP Top 10 standards to identify and mitigate critical vulnerabilities.

Unison Development

Writes, tests, and updates Unison code using a mandatory Test-Driven Development (TDD) workflow and specialized MCP tools.

Hookify: Custom Behavior Hooks

Creates declarative rules and safety guardrails to prevent unwanted behaviors and enforce coding standards within Claude Code.

Accessibility Implementation

Implements inclusive user interfaces and WCAG 2.1 compliant designs using semantic HTML, ARIA patterns, and robust keyboard navigation.

Elixir Discipline

Enforces a mandatory pre-response checklist and quality gates for all Elixir and Phoenix development tasks to ensure best practices and code correctness.

TDD Test Design & Implementation

Implements a comprehensive Test-Driven Development (TDD) workflow using RGRC cycles, Baby Steps, and systematic test design techniques.

Template Skill

Provides a minimal, structured framework for testing skill parsing and metadata separation within AI coding environments.

Testing Strategy Selection

Optimizes test suite composition by applying test pyramid principles and coordinating specialized testing agents for unit, integration, and end-to-end coverage.

Security Fundamentals

Implements robust security measures and follows OWASP Top 10 guidelines to protect applications from common vulnerabilities and data breaches.

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries to eliminate bugs structurally and ensure software integrity.

Test-Driven Development (TDD) Suite

Implements systematic Test-Driven Development using the Red-Green-Refactor-Commit cycle and Baby Steps methodology to ensure high-quality, reliable code.

Readability Reviewer

Optimizes code clarity and reduces cognitive load by applying Readable Code principles and Miller's Law.

OWASP Security Reviewer

Conducts comprehensive security audits and vulnerability detection based on the OWASP Top 10 framework.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary delays with reliable condition-based polling logic.

Kubernetes Security Policies

Implement production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and RBAC.

Jest Testing Patterns

Implements robust Jest testing suites with specialized patterns for language interpreters, parsers, and asynchronous operations.

Systematic Debugging

Eliminates software bugs by identifying root causes through structured investigation and sequential reasoning.

Systematic Debugging

Implements a disciplined, four-phase framework to identify root causes and eliminate bugs without trial-and-error thrashing.

Better Auth Integration

Implements comprehensive, framework-agnostic authentication and authorization workflows for TypeScript applications using Better Auth.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection in application code.

Validator Role Skill

Ensures software quality and security through rigorous testing, coverage analysis, and automated code review workflows.

Code Review Multi-Agent

Performs deep, parallel code reviews for security, performance, and test coverage using specialized AI agents.

Test Quality & Coverage Validator

Ensures high-quality codebases by validating test behavior, identifying edge case gaps, and enforcing strict coverage standards.

Security Analyzer

Performs deep security vulnerability scans and provides automated, test-driven remediation plans for dependencies and infrastructure.