Security & Testing Claude 스킬

Code Smell Detector & Refactor Guide

Analyzes source code to identify anti-patterns, complexity issues, and technical debt while providing senior-level refactoring advice.

Accessibility Test Scanner

Conducts comprehensive WCAG accessibility audits and ARIA validations to ensure web applications are inclusive and compliant.

Threat Model Initializer

Automates the creation of comprehensive threat models by analyzing architecture documentation and system components.

SLSA Security Playbook

Implements Supply Chain Levels for Software Artifacts (SLSA) to verify build integrity and secure software supply chains.

Threat Model Security Testing

Generates automated security test cases and attack scenarios directly from threat models to verify controls and prevent regressions.

Regression Test Tracker

Automates the identification, execution, and analysis of regression tests to prevent breaking changes and ensure code stability.

Configuration & Secrets Reviewer

Audits application configurations and secret management to ensure production safety, environment parity, and security compliance.

Claude Plugin Validator

Ensures Claude Code plugins meet structural, security, and marketplace standards through automated comprehensive validation.

Apex Ship & AI Code Review

Finalizes software tasks through multi-agent adversarial code reviews, automated git commits, and pattern-based learning.

OPA Image Security Templates

Secures Kubernetes clusters by enforcing OPA policies for container registry allowlisting, image digests, and cryptographic signature verification.

Security Pattern Check

Identifies security vulnerabilities and anti-patterns to provide senior-level feedback on code safety and compliance.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, verified code implementation for features and bug fixes.

Nitro & Nuxt 3 Testing Patterns

Streamlines testing for Nuxt 3 and Nitro applications using transactional PostgreSQL isolation and advanced component testing patterns.

Testing Implementation

Implements comprehensive test suites and quality assurance workflows using industry-standard frameworks and coverage targets.

Lighthouse Web Auditor

Audits web page quality including performance, accessibility, SEO, and best practices using the Lighthouse CLI.

Playwright CLI Expert

Automates end-to-end testing and browser workflows using the Playwright CLI to record, debug, and execute tests across multiple platforms.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, fixtures, and advanced mocking patterns to ensure code reliability.

Systematic Debugging

Implements a rigorous, four-phase root cause analysis process to eliminate bug-fixing guesswork and technical debt.

mTLS Security Configuration

Configures mutual TLS (mTLS) for zero-trust service communication and automated certificate management across cloud-native environments.

Debugging Strategies

Master systematic debugging techniques and profiling tools to identify and resolve root causes across any technology stack.

Systematic Debugging

Implements a rigorous, evidence-based methodology for identifying root causes and resolving complex software bugs without guesswork.

IDOR Vulnerability Testing

Provides systematic methodologies for detecting, exploiting, and remediating Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.

Test Coverage Improver

Automates the identification of code coverage gaps and generates high-impact tests to strengthen software reliability.

Attack Tree Construction

Generates systematic attack path visualizations and security threat models to identify vulnerabilities and prioritize defensive investments.

SAST Configuration & Security Scanning

Configures Static Application Security Testing (SAST) tools and custom security rules to automate vulnerability detection in application code.

Systematic Debugging

Enforces a disciplined, four-phase approach to identifying and resolving root causes of software bugs and test failures.

E2E Testing Patterns

Implements robust end-to-end testing strategies using Playwright and Cypress to ensure application reliability and prevent regressions.

Cloudflare Zero Trust Security Audit

Audits and secures Cloudflare deployments by identifying access gaps and implementing Zero Trust policies across all environments.

Temporal Python Testing

Implements comprehensive testing strategies for Temporal Python workflows using time-skipping, activity mocking, and determinism validation.

Accessibility Remediation

Automatically detects and resolves WCAG 2.2 accessibility violations in web components with AI-powered code suggestions and one-click application.