Security & Testing Claude 스킬

Story-Driven TDD

Guides developers through the Test-Driven Development (TDD) inner loop to implement software features incrementally based on acceptance criteria.

Go Test Quality Analyzer

Analyzes Go test files to identify flakiness, complexity, and testing anti-patterns to improve suite reliability.

Project Context Security Detector

Identifies a project's technology stack, architecture, and security-sensitive features to streamline audits and analysis.

Ultrathink Detective

Performs deep, multi-dimensional codebase audits and structural analysis using advanced AST-based intelligence.

Tester Detective

Investigates test coverage and quality using AST-based callers analysis to identify untested code and critical gaps.

Secrets Management

Implements secure storage, automated rotation, and least-privilege access for credentials and sensitive data across CI/CD pipelines.

Secrets Management for CI/CD

Implements secure storage, rotation, and management of sensitive credentials across major cloud providers and CI/CD platforms.

Verification Before Completion

Enforces rigorous, evidence-based verification workflows before any claims of task completion or code correctness.

Verification & Quality Assurance

Ensures codebase reliability and agent output quality through automated truth scoring, security verification, and git-powered rollbacks.

Secure Secrets Management

Implements robust secrets management workflows and security best practices for CI/CD pipelines and cloud environments.

Secure Secrets Management

Implements secure credential handling and automated secret rotation for CI/CD pipelines and cloud environments.

Vitest Migration & Testing

Streamlines the migration from Jest to Vitest and provides expert guidance for configuring high-performance TypeScript testing environments.

AI Visual Regression Testing

Automates intelligent visual regression testing for Storybook by using AI to distinguish between intentional design updates and actual UI bugs.

Storybook Testing Suite

Configures comprehensive testing for Storybook 9 components, including interaction, accessibility, and visual regression workflows.

Secure Environment Protection Patterns

Implements robust deployment protection for GitHub Actions using environment approval gates, wait timers, and branch-specific policies.

Keycloak Admin

Manages Keycloak identity services, including realm configuration, OAuth 2.0 setup, and user management via the Admin REST API.

TDD Test Agent

Generates comprehensive failing test suites across all architectural layers to define feature specifications before implementation begins.

Systematic Debugging

Enforces a rigorous, four-phase root cause investigation process to eliminate guesswork and ensure robust, permanent bug fixes.

Python Code Quality Suite

Ensures Python code excellence by running automated linting, type checking, unit tests, and AI-driven code simplification.

Bats Shell Testing Patterns

Automates shell script verification using the Bash Automated Testing System (Bats) framework for robust and portable scripts.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, verified code production through test-first implementation.

Dependency Upgrade Manager

Facilitates major version upgrades of software dependencies through compatibility analysis, staged rollouts, and rigorous testing.

Third-Party Action Risk Assessment

Evaluates the security posture of third-party GitHub Actions to prevent supply chain attacks and credential exfiltration in CI/CD pipelines.

E2E Testing Patterns

Implements reliable end-to-end testing suites using Playwright and Cypress to capture regressions and ensure application stability.

Systematic Debugging Strategies

Applies methodical debugging frameworks and root cause analysis to resolve complex software issues across diverse technology stacks.

Security Core

Implements comprehensive application security layers including robust authentication, granular authorization, and OWASP-compliant hardening for modern software stacks.

Minitest for Rails

Streamlines the creation and management of Ruby on Rails tests using the default Minitest framework.

Python Testing Standards

Implements industry-leading Python testing patterns and TDD workflows using pytest and advanced mocking strategies.

Strict Test-Driven Development (TDD)

Enforces a disciplined Red-Green-Refactor workflow to ensure high-quality, bug-free code through test-first implementation.

Verification Before Completion

Mandates the execution of verification commands and evidence gathering before any task is marked as complete.