Security & Testing Claude 技能

Syrupy Pytest Snapshot Testing

Simplifies snapshot testing in Python by asserting the immutability of complex data structures and managing snapshot files within pytest.

Robot Framework Resource Architect

Architects maintainable project structures and resource layouts for scalable Robot Framework automation suites.

CEL for Kubernetes Policy Generator

Generates production-ready Common Expression Language (CEL) for Kubernetes admission control, CRD validation rules, and security policy enforcement.

Security Review

Performs comprehensive security audits and provides remediation guidance to protect codebases from common vulnerabilities and exploits.

Auth0 Multi-Factor Authentication (MFA)

Implements secure multi-factor authentication, step-up verification, and adaptive risk-based login patterns using Auth0.

Code Review Helper

Conducts systematic code reviews using automated analysis, structured evaluation frameworks, and actionable feedback templates.

Looplia E2E Testing

Performs comprehensive end-to-end validation of the Looplia agentic workflow CLI across Docker, local, and production environments.

Review Opus (Deep Review)

Performs rigorous architectural and security reviews of code and project plans using advanced Claude Opus reasoning to identify subtle bugs and technical debt.

Review Sonnet

Performs rapid, automated code and plan reviews to identify quality issues, security vulnerabilities, and testing gaps.

Vitest Testing Expert

Automates the creation, execution, and optimization of unit and integration tests using the Vitest framework.

API Security Hardening

Hardens REST APIs with production-grade security layers including authentication, rate limiting, and robust input validation.

Engineering Constraint Verifier

Verifies business constraints and invariants by generating formal Lean proofs or planning runtime validation checks.

Testing Skills with Subagents

Applies a Test-Driven Development (TDD) cycle to create and bulletproof other Claude skills, ensuring they withstand pressure and resist rationalization.

Smack Policy Auditor

Analyzes SMACK policy files for Tizen applications to identify security vulnerabilities and access control conflicts.

SMACK Policy Auditor

Analyzes SMACK mandatory access control policies to identify label conflicts and security vulnerabilities in Tizen and Linux IoT systems.

Systematic Debugger

Systematically identifies and resolves complex software bugs by tracing issues from symptoms to their root cause.

Looper Live Smoke Test

Validates Looper task execution and summary application by running an automated smoke test in a temporary environment.

Vulnerability Security Scanning

Automates security vulnerability detection across application code, dependencies, and container images using industry-standard tools like Trivy and Snyk.

Dashlane Vault Integration

Accesses passwords, secure notes, and secrets from Dashlane via the command line for secure development workflows.

Bun Test Basics

Streamlines the creation and execution of high-performance unit tests using the native Bun test runner.

Codex Code Review

Automates comprehensive code reviews and security audits using the OpenAI Codex CLI for deep codebase analysis.

Interactive XPath Tester

Finds and verifies unique XPath expressions by iteratively querying HTML test files using a specialized CLI tool.

Data Permission Architect

Implements secure row-level data isolation using AOP and MyBatis interceptor patterns for Java applications.

Vitest Unit Test Writer

Generates and updates high-coverage Vitest unit tests for TypeScript functions with strict type-checking and pipe compatibility.

TDD Workflow Enforcer

Enforces a strict Test-Driven Development cycle to ensure high-quality, verifiable code implementation.

Playwright E2E & Visual Testing

Generates robust Playwright E2E tests and Page Object Model classes with integrated visual regression testing capabilities.

Ruby RBS Type Signatures

Generates and manages Ruby RBS type signatures for static type checking using both inline annotations and standalone signature files.

Security Headers Analyzer

Analyzes website HTTP response headers to evaluate security posture and provide a comprehensive security score from A+ to F.

PBR Session Audit

Analyzes Claude Code session logs to ensure PBR workflow compliance and evaluate user experience quality.

PBR Phase Review & Verification

Verifies that built software matches original plans through automated multi-layer checks and guided user acceptance testing.