Security & Testing Claude 스킬

ActivityPub Testing

Streamlines testing for WordPress ActivityPub features using standardized PHPUnit and Playwright E2E patterns.

ActivityPub Testing Patterns

Streamlines the validation of ActivityPub implementations using specialized PHPUnit and Playwright testing patterns.

Compliance Architecture Expert

Architects enterprise-grade cloud systems that meet strict regulatory standards including SOC 2, HIPAA, GDPR, and PCI-DSS.

Visual Regression Tester

Automates UI consistency checks by comparing screenshots against baselines to detect unintended visual changes.

Security Agent

Conducts automated security audits and vulnerability assessments to identify and remediate code-level risks.

Database Security Scanner

Performs automated security audits on PostgreSQL and MySQL databases to identify vulnerabilities and ensure OWASP compliance.

Encryption Tool

Secures sensitive information by providing seamless data encryption and decryption capabilities within Claude Code.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection in application source code.

Compliance Architecture Expert

Designs enterprise-grade, regulatory-compliant cloud architectures for SOC 2, HIPAA, GDPR, and PCI-DSS environments.

Auth Implementation Patterns

Implements industry-standard authentication and authorization patterns including JWT, OAuth2, and RBAC to secure web applications and APIs.

Penetration Testing & Security Audit

Automates web application security assessments to identify OWASP Top 10 vulnerabilities and suggest remediation steps.

Penetration Tester

Conducts automated security audits and vulnerability assessments to identify OWASP Top 10 threats in web applications and APIs.

Systematic Debugging Strategies

Applies methodical debugging techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

Web Accessibility Auditor

Performs comprehensive accessibility audits on web pages to ensure WCAG 2.1 compliance and inclusive user experiences.

Secure Authentication & Authorization Patterns

Implements secure, industry-standard authentication and authorization patterns including JWT, OAuth2, and RBAC for robust access control.

Chaos Engineering Toolkit

Designs and executes controlled failure experiments to identify system vulnerabilities and validate resilience mechanisms.

Web Application Testing Toolkit

Facilitates end-to-end testing and UI debugging for local web applications using Python Playwright scripts and automated server management.

Web Link & Navigation Auditor

Analyzes and validates website links and buttons to identify broken navigation, accessibility gaps, and SEO-damaging code patterns.

Image Accessibility & SEO Checker

Analyzes and validates web page images for accessibility compliance, SEO optimization, and performance best practices.

Bitcoin Auth Diagnostics

Diagnoses and resolves authentication failures, signature verification errors, and token generation issues within the bitcoin-auth ecosystem.

Reflective Verification

Implements a systematic reflection methodology to verify task completion and ensure engineering precision through rigorous quality assurance.

API Security Fuzzer

Performs automated fuzz testing on REST APIs to identify security vulnerabilities, boundary value issues, and unexpected behavior.

Plan Validation & Scoring

Validates AI-generated development plans through adversarial challenges and quantitative confidence scoring to ensure production readiness.

Compliance Report Generator

Automates the creation of professional security compliance reports and regulatory documentation for major industry standards.

Access Control Auditor

Audits and identifies vulnerabilities in access control configurations, IAM policies, and network permissions to ensure security compliance.

Design-by-Contract Developer

Implements formal contract verification using preconditions, postconditions, and invariants across multiple programming languages to ensure code reliability.

Infrastructure Compliance Checker

Automates infrastructure security audits against industry standards including SOC2, HIPAA, and PCI-DSS to identify and remediate configuration gaps.

Temporal Python Testing

Automates and guides the testing of Temporal workflows in Python using pytest, time-skipping, and determinism validation.

Secrets Management

Implements secure secrets handling for CI/CD pipelines using Vault, AWS Secrets Manager, and cloud-native solutions.

Contract Test Validator

Ensures API reliability by generating and validating consumer-driven contract tests using Pact and OpenAPI specifications.