Security & Testing Claude 스킬

Plugin Auditor

Audits Claude Code plugins for security vulnerabilities, repository compliance, and code quality standards.

API Security Fuzzer

Performs automated fuzz testing on REST APIs to identify security vulnerabilities, crashes, and input validation failures using malformed payloads.

ActivityPub Testing Suite

Provides standardized testing patterns and configurations for PHPUnit and Playwright E2E tests focused on ActivityPub federation.

Bats Testing Patterns

Master the Bash Automated Testing System (Bats) to create robust, production-grade test suites for shell scripts and CLI tools.

Spanner Unit Testing

Automates the setup, execution, and cleanup of Go unit tests that require the Google Cloud Spanner emulator.

Plugin Validator

Ensures Claude Code plugins meet structural, security, and marketplace standards through automated validation and auto-fixing.

TDD Refactor Phase Expert

Improves code quality and maintainability during the TDD refactoring stage while ensuring behavior remains unchanged and tests pass.

TDD Red Phase Expert

Enforces the 'test-first' principle of Test-Driven Development by guiding users to write failing tests before implementation.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

TDD Green Phase Expert

Implements the minimal code required to pass failing tests while strictly adhering to Test-Driven Development principles.

Kubernetes Security Policies

Implements production-grade Kubernetes security configurations including NetworkPolicies, RBAC, and Pod Security Standards.

SAST Security Configuration

Automates the setup and configuration of Static Application Security Testing (SAST) tools for early vulnerability detection.

Bats Testing Patterns

Implements comprehensive unit testing for shell scripts using the Bash Automated Testing System (Bats) framework.

Hookify Rule Assistant

Simplifies the creation and management of custom Hookify rules to automate code reviews, enforce standards, and prevent dangerous commands in Claude Code.

Security Drift Detection

Monitors and reports architectural changes to identify security drift and new potential risks in your threat model.

Damage Control Security Hooks

Protects your workspace by intercepting and blocking dangerous shell commands and unauthorized file modifications.

E2E Testing Patterns

Master end-to-end testing with Playwright and Cypress to build reliable, high-confidence test suites that catch regressions and enable fast deployment.

PCI DSS Compliance Validator

Assesses codebases and infrastructure configurations for compliance with Payment Card Industry Data Security Standards to identify vulnerabilities.

Defense-in-Depth Validation

Implements multi-layered data validation patterns to eliminate deep execution bugs and ensure system-wide structural integrity.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection in source code.

Compliance Architecture Expert

Designs enterprise-grade compliant architectures for SOC 2, HIPAA, GDPR, and PCI-DSS using industry-standard security controls.

Network Security Setup

Configures Claude Code sandbox network isolation policies to ensure secure development environments through domain whitelisting and access control.

Network Security Setup

Configures secure sandbox network isolation through domain whitelisting, custom access policies, and protected environment variable management.

Bats Testing Patterns

Implements comprehensive unit testing for shell scripts using the Bash Automated Testing System (Bats).