Security & Testing Claude 스킬

APEX Systematic Debugging

Implements a hypothesis-driven debugging workflow that utilizes pattern-based intelligence to resolve complex software bugs.

.NET Code Security & Quality Analyzer

Performs automated static analysis, security audits, and dependency vulnerability scans for .NET projects.

Pipeline Data Validator

Ensures data integrity across the development lifecycle by validating JSON artifacts against strict Pydantic schemas.

Apex Ship

Automates adversarial code reviews, git commits, and task reflections to ensure high-quality production deployments.

Systematic Debugging

Enforces a rigorous four-phase debugging protocol to identify root causes and implement permanent fixes rather than superficial patches.

macOS Desktop Automation

Automates native macOS application testing and desktop workflows using Hammerspoon and system-level input simulation.

Systematic Debugging

Enforces a rigorous four-phase protocol to identify root causes and implement reliable software fixes without guesswork.

PopKit Validation Engine

Validates PopKit plugin integrity through a structured Scan-Compare-Report-Apply workflow to ensure component consistency.

Systematic Debugging

Implements a rigorous four-phase framework that enforces root cause investigation before applying fixes to complex bugs or test failures.

Web Application Testing

Automates and tests local web applications using Playwright with integrated server lifecycle management.

QA Engineer

Validates software implementation through automated test execution, edge case identification, and comprehensive bug reporting.

Web Application Testing

Automates local web application testing and UI debugging using Playwright and integrated server management scripts.

Role-Based Access Control (RBAC)

Implements a complete authorization framework with hierarchical user roles and permission middleware for full-stack applications.

Defense-in-Depth Validation

Implements multi-layered data validation strategies across entry points, business logic, and environment guards to prevent structural bugs.

Root Cause Tracing

Traces software bugs backward from symptoms to their original source to prevent recurring issues and technical debt.

Defense-in-Depth Validation

Implements multi-layered data validation to prevent deep-seated execution failures and ensure structural system integrity.

Test Writer

Generates comprehensive unit, integration, and end-to-end tests following industry-standard patterns and best practices.

Systematic Debugging

Implements a rigorous five-step methodology to identify, isolate, and resolve software bugs without guesswork.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to catch bugs through sequential syntax, unit, integration, and end-to-end testing cycles.

Dependency Evaluator

Evaluates the health and risk of programming dependencies through a systematic 10-signal analysis to prevent technical debt and security vulnerabilities.

Remediation Configuration Security

Provides actionable security fix patterns for configuration and deployment vulnerabilities across multiple programming languages.

Vue 3 Playwright Testing

Streamlines end-to-end and component testing for Vue 3 applications using Playwright and Vite best practices.

Language-Specific Security Vulnerability Patterns

Identifies language-specific security vulnerabilities across major programming stacks using optimized regex and grep patterns.

Crypto Security Remediation

Fixes cryptographic security flaws by replacing weak algorithms, insecure randomness, and broken TLS configurations with language-specific secure patterns.

Authentication Security Remediation

Provides language-specific patterns and secure implementations for fixing authentication and authorization vulnerabilities in codebases.

Angular Security Patterns

Provides comprehensive implementation patterns and best practices for securing Angular applications using JWT, OAuth2, and advanced session management.

GKE Runtime Security

Enforces GKE workload security through Pod Security Standards, admission controllers, and real-time behavioral monitoring with Falco.

Secure Code & Supply Chain

Identifies and remediates security vulnerabilities, manages SBOMs, and secures software supply chains using automated scanning and best practices.

OWASP ASVS 5.0 Security Requirements

Accesses and maps OWASP ASVS 5.0 requirements to streamline security audits and ensure application compliance across 17 domains.

Go Security Tooling

Implements standard, OpenSSF-certified Go security workflows using race detection, linting, and vulnerability scanning.