Security & Testing Claude 스킬

Non-Functional Requirement (NFR) Assessment

Validates software implementation against non-functional requirements to ensure architectural integrity and performance standards.

Python Code Reviewer

Audits Python source code for PEP8 compliance, modern type hints, and architectural anti-patterns using industry-standard tooling.

BMAD Test Design

Designs comprehensive test scenarios and architecture ahead of development to ensure robust software quality and coverage.

Cosmos Vulnerability Scanner

Scans Cosmos SDK blockchains and CosmWasm contracts to detect consensus-critical vulnerabilities and security flaws.

Test Automation Architect

Generates comprehensive test automation frameworks and architectural setups for agile software development.

ATDD Test Architecture

Generates comprehensive API and end-to-end acceptance tests before implementation to ensure code quality and requirement alignment.

Test Traceability

Maps project requirements to test cases to ensure comprehensive coverage and informed quality gate decisions.

GitHub Copilot for Claude

Integrates GitHub Copilot's advanced coding capabilities into Claude for high-performance code analysis, debugging, and refactoring.

Bitwarden Secret Unlocker

Automatically unlocks Bitwarden vaults and injects project-specific secrets directly into your development environment.

Project Bootstrap for Doc Detective

Automatically initializes Doc Detective workflows by detecting documentation, generating configurations, and creating validated tests.

Anthropic Agent Evaluations

Implements rigorous evaluation frameworks and testing patterns for AI agents based on Anthropic's engineering standards.

Sharp Edges Security Auditor

Identifies error-prone API designs and dangerous configuration patterns to prevent security vulnerabilities and misuse.

Lean Proof Walk

Generates formal Lean 4 proof chains using a GF(3)-balanced triad of agents for sound mathematical verification.

Playwright E2E Testing

Enforces standardized end-to-end testing workflows using Playwright with custom fixtures and Page Object Models.

BMAD Test Framework Architect

Initializes production-ready test framework architectures to ensure robust software quality and scalable validation structures.

Theater Code Detection

Identifies non-functional code that appears complete but lacks operational logic to ensure production reliability.

Incident Response Playbook Creator

Generates comprehensive, NIST-aligned incident response playbooks for 11 critical security scenarios including ransomware, cloud breaches, and AI attacks.

CORS Configuration Validator

Validates and secures Cloudflare Workers CORS configurations to ensure proper header handling and cross-origin security.

Safe Code Refactoring

Refactors complex codebases safely using characterization tests, incremental changes, and automated verification to ensure behavior preservation.

Narya Formal Proofs

Mechanically verifies event-sourced systems by generating cryptographic proof certificates for consistency, determinism, and data integrity.

Sniper Code Quality Check

Validates code quality and applies precision fixes using an isolated, 6-phase automated workflow.

Systematic Bug Fixer

Resolves software defects through automated test-driven reproduction, root cause analysis, and rigorous regression verification.

Team Review

Orchestrates a multi-agent team of specialized AI reviewers to perform comprehensive security, architectural, and performance code reviews.

OWASP Security Reviewer

Performs automated security audits and OWASP Top 10 compliance checks on pull requests, commits, or entire codebases.

Dependency Reviewer & Security Auditor

Audits project dependencies for security vulnerabilities, license compliance risks, and version staleness across multiple programming ecosystems.

Write Test Plan

Generates comprehensive, structured test plans to ensure software quality and prevent regressions across multiple testing domains.

Security Checklist

Provides a comprehensive security review framework and detailed checklists for auditing web application features and architectural changes.

ERT Emacs Testing

Provides comprehensive guidance and implementation patterns for testing Emacs Lisp code using the built-in ERT framework.

Test Suite Generator

Generates comprehensive, framework-agnostic test suites with deep coverage analysis and parallel test writing.

Smoke Test Runner

Executes automated smoke test suites to verify core application functionality and system health after deployments or updates.