Security & Testing Claude 스킬

Technical Constraint Extractor

Extracts and documents external ecosystem constraints to ensure software compliance and architectural alignment.

Integration Test Runner

Executes and validates complex end-to-end integration tests, BDD scenarios, and API contracts to ensure system-wide reliability.

SecLists Payloads Collection

Provides a curated set of exploitation payloads for security testing, including anti-virus bypasses and file name exploits.

KrakenD Security Auditor

Performs comprehensive security audits and vulnerability scanning for KrakenD API Gateway configurations to ensure production readiness.

SecLists Passwords Security Toolkit

Equips Claude Code with curated password wordlists for authorized security auditing, credential testing, and penetration testing research.

Traceability Matrix Generator

Generates a comprehensive traceability matrix mapping business intents to requirements, code, tests, and runtime metrics.

Speck PR Reviewer

Conducts systematic GitHub pull request reviews with VSCode integration, logical file clustering, and automated comment management.

JavaScript Testing Patterns

Implements comprehensive testing strategies using Jest and Vitest to ensure reliability in JavaScript and TypeScript applications.

Web3 Smart Contract Testing

Automates and optimizes smart contract testing using Hardhat and Foundry to ensure security and gas efficiency in blockchain applications.

Elixir Testing with ExUnit

Writes comprehensive, production-grade test suites for Elixir applications using ExUnit, Mox, and property-based testing patterns.

Code Review Excellence

Transforms code reviews into a collaborative knowledge-sharing process that improves code quality and team morale through structured feedback.

Advanced Debugging Strategies

Applies systematic diagnostic methodologies and profiling tools to identify and resolve complex software defects across any technology stack.

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and RBAC configurations.

Advanced Debugging Strategies

Implements systematic debugging techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

ShellCheck Configuration & Static Analysis

Enhances shell script quality and reliability by implementing standardized ShellCheck configurations and automated linting workflows.

Solidity Security & Best Practices

Master smart contract security to prevent vulnerabilities and implement industry-standard Solidity development patterns.

Security Requirement Extraction

Transforms threat models and business context into actionable security requirements and testable user stories.

Python Testing Patterns

Implement robust testing strategies using pytest, mocking, and fixtures to ensure high-quality Python applications.

Rust WASM Test Generator

Generates comprehensive test harnesses for Rust WASM components using fixture-based or production-replay testing patterns.

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries to make bugs structurally impossible and ensure data integrity.

Agile TDD Workflow Implementation

Executes a rigorous Test-Driven Development (TDD) cycle to implement features based on task specifications and traceability requirements.

TDD Feature Development

Integrates test-driven development practices into feature implementation workflows to ensure high-quality code and comprehensive test coverage.

Web3 Smart Contract Testing

Streamlines comprehensive smart contract testing using Hardhat and Foundry frameworks for secure blockchain development.

Clerk Authentication & Identity Management

Integrates robust user authentication, session management, and JWT token handling using Clerk for secure web applications and blockchain integrations.

Verification Before Completion

Enforces a strict evidence-based protocol requiring empirical verification before any task is marked as complete or successful.

Testing Anti-Patterns Guard

Prevents common software testing errors by enforcing best practices for mocking, production code isolation, and test-driven development.

Systematic Debugging Framework

Applies a rigorous four-phase scientific framework to identify root causes and implement reliable fixes for complex software bugs.

Condition-Based Test Waiting

Eliminates flaky tests by replacing arbitrary timeouts with smart condition polling to ensure reliable and fast async operations.

Root Cause Tracing

Systematically traces bugs backward through the call stack to identify and fix the original trigger rather than just treating symptoms.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to catch bugs at every system boundary and make structural failures impossible.