Security & Testing Claude 스킬

Security Practices

Implements modern security standards including Zero Trust Architecture, supply chain protection, and DevSecOps integration.

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and role-based access control.

Claude Eval Harness

Implements a formal evaluation framework for Claude Code sessions to enable reliable, test-driven AI development.

Authorization Security

Implements production-grade authorization standards including RBAC, ABAC, and NIST 800-53 compliance for secure access control.

Dependency Mocking

Streamlines the creation of temporary, well-documented mock implementations for unimplemented dependencies to unblock development workflows.

Effect-TS Testing Patterns

Provides standardized patterns and best practices for writing comprehensive tests for Effect-TS applications and services.

Systematic Debugging Strategies

Master advanced debugging techniques and root cause analysis to efficiently identify and resolve complex software bugs across any technology stack.

Constraint Generalization & Refinement

Synthesizes and propagates formal constraints across composed data paths to enable automatic refinement typing and formal verification.

Security Review

Conducts comprehensive security audits and provides implementation patterns for authentication, input validation, and data protection.

Valid Skill

Enforces standardized software development practices and testing protocols to ensure production-grade code quality.

Vaadin Karibu Test Writer

Generates robust, browserless Karibu unit tests for Vaadin views to ensure server-side UI logic integrity.

TDD Methodology Expert

Enforces strict Test-Driven Development cycles to ensure high code quality and comprehensive test coverage.

Vaadin Playwright Tester

Generates robust Playwright integration tests for Vaadin views to ensure UI reliability in real browser environments.

Browser Performance Benchmarking

Benchmarks Zig-based WHATWG Stream implementations against browser engines to ensure high-performance compatibility and functional parity.

CQ-AI Deterministic Security Scanner

Performs reproducible, AI-enhanced security audits using deterministic analysis and ternary polarity classification.

TypeScript Testing

Designs, implements, and maintains high-value TypeScript test suites using industry-standard libraries and behavioral testing principles.

Deliberation & Red Teaming

Conducts structured adversarial reviews to challenge assumptions and identify hidden vulnerabilities in plans or architectures.

Performance Testing Standards

Establishes production-grade performance testing protocols including load, stress, and soak testing using industry-standard tools like k6 and JMeter.

Port Resurrection

Automates deterministic service port assignment using color-based sequences to ensure consistent network discovery across environments.

BDD Mathematical Verification

Verifies mathematical formulas and expressions using Behavior-Driven Development workflows and automated LaTeX extraction.

Universal CapTP Derivation

Traces and validates capability derivation chains using 3x3 expert posets and GF(3) conservation principles.

Goblins OCapN Adapter

Bridges ElizaOS and OpenClaw plugins to the Goblins Object Capability Network to enforce high-security structural authority.

Verification & Quality Assurance

Validates AI-generated code and agent outputs using real-time truth scoring and automated rollback systems to maintain high codebase reliability.

Algorand Vulnerability Scanner

Audits Algorand smart contracts for security vulnerabilities including rekeying attacks and access control issues.

TDD Workflow

Implements features and fixes bugs using the disciplined Red-Green-Refactor cycle of Test-Driven Development (TDD).

Commit Security Scanner

Analyzes code changes for security vulnerabilities using LLM-powered reasoning and STRIDE threat modeling patterns.

Adversarial Code Reviewer

Conducts rigorous code quality checks and adversarial testing to identify edge cases and ensure production-grade software.

Auth Patterns

Implements secure authentication and authorization patterns using modern industry standards.

Intent Sink Validation

Validates intent-centric architectures by ensuring requests are well-formed, authorized, and resource-balanced before execution.

Aptos GF(3) Society

Implements triadic balanced governance and staking on the Aptos blockchain using GF(3) conservation principles.