Security & Testing Claude 技能

Test Focus

Executes individual test files with fail-fast logic to provide immediate feedback during rapid development iterations.

Duplicate Code Detector

Automates the identification of code clones and technical debt using quantitative metrics and structured TDD refactoring plans.

Code Coverage Configurator

Audit and configure code coverage thresholds, reporting tools, and CI/CD integrations across multiple testing frameworks.

Biome Config Validator

Validates and optimizes Biome 2.3+ configurations to ensure modern linting, formatting, and type-aware performance.

Weasel Solidity Analyzer

Performs automated static analysis and expert security audits for Solidity smart contracts using integrated security tools.

Weasel Solidity Simplifier

Refactors and simplifies Solidity smart contracts to improve readability and maintainability while preserving security and gas efficiency.

Weasel Audit Report Writer

Generates professional, submission-ready Solidity security audit reports and markdown documentation for smart contract vulnerabilities.

Weasel Solidity PoC Writer

Generates precise, assertion-based proof-of-concept exploits for Solidity smart contract vulnerabilities within existing test suites.

Weasel Gas Optimizer

Analyzes and implements chain-specific gas optimizations for Solidity smart contracts to reduce transaction costs across EVM networks.

Quality Assurance & SDLC Engineering

Implements rigorous Verification and Validation processes based on CMMI standards to ensure products are built correctly and solve the right user needs.

Blockchain Simulation Dry Run

Simulates blockchain transactions and scenario tests against Gorlami fork RPCs to ensure script safety before live broadcasting.

Advanced Code Review & Refactor

Automates comprehensive code reviews and security audits across multiple languages while providing intelligent fixes for identified issues.

Application Security Expert

Implements comprehensive security protocols and audits for modern web applications using framework-specific best practices and OWASP standards.

Testcontainers for Go

Simplifies Go integration testing by providing lightweight, throwaway Docker container instances for databases, message queues, and cloud services.

Better Auth Best Practices

Streamlines the integration of Better Auth to build secure, TypeScript-first authentication systems with production-grade configurations.

Workspace Performance Auditor

Conducts end-to-end performance audits across full-stack monorepos to identify bottlenecks and optimize system-wide efficiency.

PowerShell Scripting for Security

Automates security assessments and system administration tasks using comprehensive PowerShell scripting patterns and best practices.

RubyCritic Code Quality Analysis

Analyzes Ruby and Rails code quality to identify code smells, complexity issues, and refactoring opportunities using RubyCritic.

Testing Guide

Implements a comprehensive test-driven development (TDD) framework and multi-layered validation strategy for autonomous coding.

Error Handling Patterns

Standardizes error management and security logging across autonomous development systems to ensure resilient and auditable code.

Architecture Review

Evaluates codebase architecture against Architectural Decision Records (ADRs), coupling rules, and design principles to ensure structural integrity.

Bun Test Runner

Executes and interprets tests using the Bun runtime's native test runner directly within the Claude development environment.

Story-Based Pattern Framing

Accelerates pattern and anti-pattern identification across any domain by framing detection tasks as narrative arcs instead of static checklists.

Weasel Overview

Streamlines smart contract security audits by providing comprehensive project scoping and architectural analysis.

Weasel Filter

Filters and triages false positives from Weasel Solidity static analysis reports to ensure high-quality security findings.

Weasel Smart Contract Attack Validator

Validates user-proposed security vulnerabilities and attack vectors in Solidity smart contracts through rigorous trace analysis.

Weasel Solidity Explainer

Explains Solidity smart contract logic, design patterns, and potential risks through detailed architectural walkthroughs.

AppWorld API Pattern Reflector

Analyzes failed AppWorld tasks to extract specific API usage patterns and generate actionable remediation playbooks.

Constraint Verification

Verifies code invariants and complex logic constraints using constraint programming to ensure system stability and correctness.

Security Patterns

Implements OWASP-compliant security measures and defensive coding patterns to protect applications from critical vulnerabilities.