Security & Testing Claude 技能

Testing Builder

Generates comprehensive unit, integration, and E2E test suites automatically while learning from your project's specific testing style.

Cloudflare Zero Trust Access Integration

Implements secure Cloudflare Zero Trust Access authentication for Workers applications using Hono middleware and verified JWT validation patterns.

Cairo Vulnerability Scanner

Audits StarkNet smart contracts by scanning for critical Cairo-specific vulnerabilities including felt252 arithmetic and messaging issues.

RAG/CAG Security Patterns

Secures retrieval-augmented and cache-augmented generation systems through multi-tenant isolation, document-level access control, and prompt injection prevention.

Burp Suite Project Parser

Analyzes and extracts data from Burp Suite project files directly from the command line for efficient security auditing.

QA Screenshot Validation

Validates UI screenshots for layout integrity, element clipping, and rendering issues with intelligent viewport handling.

Workflow Validator

Ensures AI-generated JSON artifacts meet specific structural and content criteria through deterministic validation scripts.

Code Review Gate

Enforces mandatory human oversight for security-sensitive, complex, or high-volume code changes within the development lifecycle.

Tizen Compliance Checker

Validates Tizen application compliance with official TCT standards across IoT, TV, and mobile profiles.

Playwright E2E Testing

Enforces standardized end-to-end testing workflows using Playwright with custom fixtures and Page Object Models.

Test-Driven Development (TDD)

Enforces a disciplined RED-GREEN-REFACTOR cycle to ensure high-quality, test-backed code implementation.

Mock Generator

Generates automated test mocks, stubs, and fixtures across multiple languages and testing frameworks.

Incident Response Playbook Creator

Generates comprehensive, NIST-aligned incident response playbooks for 11 critical security scenarios including ransomware, cloud breaches, and AI attacks.

Theater Code Detection

Identifies non-functional code that appears complete but lacks operational logic to ensure production reliability.

Narya Formal Proofs

Mechanically verifies event-sourced systems by generating cryptographic proof certificates for consistency, determinism, and data integrity.

JavaScript Testing Patterns

Implements robust testing architectures using Jest, Vitest, and Testing Library for JavaScript and TypeScript applications.

Deno Secure Sandboxes

Executes untrusted code in secure, isolated Linux microVMs for AI agents and multi-tenant applications.

CodeRabbit Fix Flow

Automates the systematic processing, analysis, and implementation of CodeRabbit code review feedback using MCP-powered tools.

Test Skill

Retrieves rare Bible verses across multiple translations to verify skill system functionality and grounding accuracy.

Structured Code Reviewer

Performs code reviews using a rigorous methodology based on confidence scoring and severity ratings.

Layered Architecture Testing

Orchestrates comprehensive testing across architectural layers with coverage-first analysis and isolated worktrees.

Web Application Testing

Automates local web application testing and UI verification using Playwright and server management utilities.

Debugging Memory

Prevents redundant troubleshooting by integrating a persistent, searchable memory system for software bugs and resolutions.

Web3 Thirdweb SIWE Auth

Implements and debugs secure wallet connections and SIWE authentication flows using thirdweb v5.

BDD Mathematical Verification

Verifies and transforms mathematical formulas using Behavior-Driven Development workflows and Mathpix OCR integration.

Frappe Integration Test Generator

Generates comprehensive integration tests for multi-DocType workflows and complex business processes in the Frappe Framework.

Skill Evaluation and Improvement

Assesses, analyzes, and improves the quality, performance, and compliance of other Claude Code Skills.

Security Audit for Claude Code

Audits code for critical security vulnerabilities like SQL injection and broken authentication with actionable, production-ready fixes.

CVE Dependency Audit

Scans project dependencies across multiple programming languages to identify and report known security vulnerabilities and CVEs.

CVE Vulnerability Lookup

Retrieves detailed information about Common Vulnerabilities and Exposures (CVEs) and affected software versions directly within your development environment.