Security & Testing Claude 스킬

Faber Evaluate

Automates the testing and quality review phase of the FABER workflow to ensure code meets specifications before release.

Systematic Debugging

Enforces a rigorous, four-phase debugging protocol to identify root causes and prevent regression-prone quick fixes.

Smart Contract Guidelines Advisor

Provides expert smart contract development advice and security reviews based on Trail of Bits' industry-standard best practices.

Token Integration Analyzer

Analyzes token implementations and integrations for security vulnerabilities, ERC compliance, and non-standard behavioral patterns using Trail of Bits expertise.

Workflow Validator

Validates Claude agentic workflows to ensure compliance with architectural patterns and the Manager-as-Agent principle.

Solidity Security & Best Practices

Implements secure smart contract development patterns and identifies critical vulnerabilities in Solidity code for blockchain applications.

Tizen Security Compliance

Maps security requirements to implementation and coordinates compliance against international standards for Tizen and IoT applications.

Atheris Python Fuzzing

Discovers vulnerabilities and edge-case bugs in Python code using Atheris coverage-guided fuzzing.

Architecture Validator

Validates Claude Code project architectures against Fractary standards for Manager-as-Agent and Director-as-Skill patterns.

LLM Evaluation & Testing

Automates LLM prompt testing and performance evaluation using Promptfoo to ensure model reliability and security.

Clerk Auth for Next.js & Convex

Integrates robust Clerk authentication patterns into Next.js applications with Convex backend synchronization.

Entry Point Analyzer

Identifies and categorizes state-changing entry points in smart contracts to streamline security audits and surface area mapping.

JavaScript Testing Patterns

Implements comprehensive testing strategies for JavaScript and TypeScript applications using modern frameworks and best practices.

Testing Philosophy

Implements universal principles for writing robust, maintainable tests by focusing on behavior over implementation details.

Code Quality Standards

Establishes robust testing frameworks, CI/CD pipelines, and automated quality gates to maintain high software reliability.

Debugging Memory

Prevents redundant troubleshooting by integrating a persistent, searchable memory system for software bugs and resolutions.

Web App Testing & Playwright Automation

Automates browser-based testing and UI verification for local web applications using Playwright and server lifecycle management.

Testify Go TDD Assistant

Implements Go unit tests and mocks using the Testify framework following Test-Driven Development best practices.

Security Ownership Map & Git Risk Analyzer

Analyzes Git history to map code ownership, identify security risks like low bus factors, and visualize developer-to-file topologies.

Privacy Compliance

Implements robust data protection standards and regulatory compliance for global privacy jurisdictions.

QA Element Extraction

Automates the capture of specific UI component screenshots from QA test procedures to create clear visual documentation.

Cross-Distro E2E Container Testing

Automates end-to-end installer testing within isolated Docker containers across multiple Linux distributions like Ubuntu, Debian, and Fedora.

MCP Security Architect

Implements a robust 5-layer defense architecture to secure multi-agent systems and MCP pipelines against prompt injection and unauthorized access.

OpenSpec Change Verifier

Validates that code implementations align perfectly with specifications, tasks, and design documents before archiving changes.

TypeScript Testing Pro

Implements professional TypeScript testing patterns using Jest and Vitest to ensure high-quality, reliable code.

Agent Tool Permissions

Configures granular tool permissions and path restrictions for secure, multi-agent Claude Code workflows.

Python Testing Specialist

Implements comprehensive Python testing strategies using pytest, including unit tests, integration tests, and advanced mocking patterns.

Systematic Debugging

Enforces a rigorous, four-phase debugging methodology to identify root causes and implement stable fixes without guesswork.

Rigorous Verification Guard

Enforces a strict evidence-based workflow requiring successful command execution and output validation before any task is marked as complete.

Council Verification & Multi-Model Validation

Verifies code implementation and document accuracy using multi-model consensus to ensure high-quality, machine-actionable results.