Security & Testing Claude 스킬

Mutation Testing

Validates test suite effectiveness by introducing deliberate code mutations to identify logic gaps that traditional coverage metrics miss.

Web Application Testing

Automates local web application testing and UI verification using Playwright and server management utilities.

CLAUDE.md Auditor

Audits and optimizes CLAUDE.md configuration files to ensure security compliance, adherence to official Anthropic guidance, and peak LLM context performance.

Property-Based Test Generator

Generates robust property-based tests to uncover edge cases and validate logical invariants across Python, JavaScript, and Haskell projects.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure all production code is verified by failing tests before implementation.

Constraint Pre-flight Verification

Verifies implementation and registration of scheduling constraints to prevent logic gaps and deployment errors.

Regex Pattern Builder

Generates, explains, and tests complex regular expression patterns from natural language descriptions for multiple programming languages.

DPO Specialist (GDPR & ISO 27701)

Automates data protection compliance by providing expert guidance on GDPR, BDSG, and ISO 27701 standards within your development workflow.

WCAG Compliance Checker

Audits web applications for WCAG 2.1 Level AA compliance and provides detailed remediation guidance for accessibility violations.

Scale Game

Validates architectural robustness by simulating extreme operational scales to uncover hidden bottlenecks and system limits.

Continuous Threat Modeling (CTM)

Analyzes development stories to identify security-notable events and recommend mitigations based on baseline threat models.

E2E Test Orchestrator

Coordinates end-to-end testing by delegating UI actions to humans and backend verifications to Claude.

TUnit Test Runner

Executes and manages TUnit tests with Playwright integration to verify Blazor component functionality and accessibility.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow by mapping SuperSpec scenarios to failing tests before any production code is written.

Scale Game Problem Solving

Validates architectural decisions by simulating extreme scaling scenarios to identify hidden bottlenecks and system failures.

Security Engineering

Conducts systematic security audits and threat modeling using OWASP patterns, STRIDE analysis, and CVSS-aligned risk assessments.

GDPR Auditor

Analyzes codebases and system documentation to identify GDPR compliance gaps, data protection risks, and privacy policy inconsistencies.

Systematic Debugging

Provides a structured, four-stage framework for evidence-based root cause investigation and verified bug resolution.

AI Test Generator

Generates comprehensive unit tests, manages test suites, and performs coverage analysis using AI-driven patterns.

Autonomous Bug Diagnosis & Root Cause Analysis

Automates structured debugging workflows and root cause analysis using evidence-based protocols and comprehensive verification.

IT Glue Password Management

Manages secure credential storage, categorization, and documentation within IT Glue for MSP environments.

Prove It Works (No-Mock Testing)

Validates features end-to-end using real dependencies and zero mocks to ensure production-grade reliability.

TDD Field Guide

Implements disciplined Red-Green-Refactor cycles for TypeScript and Rust development using standardized TDD methodologies.

Unified Review Orchestration

Orchestrates and runs appropriate code review skills based on codebase analysis and user context.

Outfitter Testing

Streamlines testing for Outfitter packages using specialized harnesses, deep-merged fixtures, and Bun-native patterns.

Outfitter Stack Code Auditor

Audits TypeScript codebases for Outfitter Stack compliance, ensuring robust error handling, secure pathing, and consistent logging patterns.

Outfitter Compliance Check

Validates codebase compliance with the Outfitter Stack by scanning for anti-patterns and generating actionable severity-ranked reports.

Professional Code Review

Conducts systematic, checklist-based code reviews to identify security risks, type safety issues, and architectural improvements before committing.

Root Cause Tracing

Systematically traces software bugs backward through the call stack to identify and resolve original triggers at their source.

JUnit Core Testing Standards

Implements professional JUnit 5 testing patterns and coverage standards for high-quality Java applications.