Security & Testing Claude 技能

Claude Sandbox Architect

Analyzes codebases to generate secure, optimized Claude Code Sandbox configurations and permission settings.

Implementation Fidelity Review

Verifies code implementation against software design specifications to ensure development remains aligned with the original plan.

SDD Plan Reviewer

Coordinates multiple AI models to provide structured, multi-dimensional feedback on technical specifications before implementation begins.

Pytest Runner & Debugger

Automates comprehensive Pytest execution and systematic debugging workflows for Python applications.

Root Cause Tracing

Systematically traces software bugs backward through the call stack to identify original triggers and implement permanent source-level fixes.

PopKit Validation Engine

Validates PopKit plugin integrity through a structured Scan-Compare-Report-Apply workflow to ensure component consistency.

PopKit Architecture Auditor

Evaluates and validates software architecture using metrics for code duplication, coupling, cohesion, and SOLID principles.

Anthropic Compliance & Standards Assessor

Validates Claude Code plugins against official Anthropic engineering standards and hook protocols using automated validation scripts.

Security Scan & Issue Tracker

Performs automated security vulnerability audits and synchronizes findings with GitHub issues for streamlined remediation.

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries and business logic to make critical software bugs structurally impossible.

QA Security Scan

Conducts comprehensive security audits and vulnerability assessments using OWASP-aligned checklists and automated scanning integrations.

Accessibility Audit Pro

Audits code for WCAG 2.1 AA and EN 301 549 compliance to ensure inclusive and accessible web experiences.

WCAG 2.1 AA Accessibility Validator

Validates Moodle templates, JavaScript, and CSS for WCAG 2.1 Level AA accessibility compliance and best practices.

SAST Configuration & Security Scanning

Configures Static Application Security Testing (SAST) tools for automated vulnerability detection and DevSecOps integration across multiple programming languages.

Fabric Native Patterns

Integrates Daniel Miessler’s Fabric patterns natively into Claude Code for seamless content analysis, security auditing, and wisdom extraction.

TDD Powerhouse Workflow

Orchestrates a systematic Test-Driven Development cycle using behavioral guidance, semantic code intelligence, and persistent progress tracking.

Kubernetes Security Policies

Implements defense-in-depth security for Kubernetes clusters using NetworkPolicies, Pod Security Standards, and fine-grained RBAC.

Ruby Community Style

Implements idiomatic Ruby patterns and strict structural guidelines based on the RuboCop Community Ruby Style Guide and Sandi Metz rules.

Systematic Debugging

Resolves complex software anomalies using a rigorous 7-step methodology inspired by medical differential diagnosis and evidence-based reasoning.

Global Error Handling

Implements comprehensive error management strategies including user-friendly messaging, custom exception types, and resilient recovery patterns.

Comprehensive Code Review

Performs ultra-critical, multi-pass analysis of code changes to identify runtime failures, architectural flaws, and environment risks before merging.

.NET Unit Testing Patterns

Implements standardized unit testing architectures for .NET applications using xUnit, Moq, and FluentAssertions.

Acceptance Criteria Verification

Verifies feature implementation against defined acceptance criteria and generates automated verification reports on GitHub issues.

Testing & Test Writing

Writes strategic, behavior-focused tests for core user flows and critical business paths to balance development velocity with reliable coverage.

Comprehensive Code Review

Performs a rigorous 7-point code audit covering security, performance, and maintainability to ensure production-grade software quality.

Test Orchestrator

Configures project-specific testing infrastructure, frameworks, and strategy documentation to establish a robust quality assurance foundation.

Form Validation

Implements robust, schema-first form validation using Zod while applying optimal UX timing patterns and user-centric error messaging.

TDD Cycle Management

Guides the implementation of software features using a rigorous Red-Green-Refactor test-driven development workflow.

TDD & Full Coverage

Enforces a strict Red-Green-Refactor cycle with a 100% code coverage requirement for reliable feature implementation and bug fixes.

User-Scoped Data Filtering

Implements secure multi-tenant data access patterns and ownership verification using Python, FastAPI, and SQLAlchemy.