Security & Testing Claude 스킬

CA Django Linters

Automates Python code formatting and linting for Django projects using Ruff to ensure consistent code quality and style compliance.

Keycloak IAM Manager

Manages Keycloak identity and access systems including realms, clients, authentication flows, and user federation.

RBAC Permissions Architect

Architects secure, multi-tenant features using modular RBAC, workspace isolation, and CASL-integrated permission mapping.

Security Reviewer

Performs comprehensive security audits, vulnerability scans, and proof-of-concept generation using the Gemini security extension.

PCI Compliance & Secure Payments

Implements PCI DSS requirements to secure payment card data and ensure compliant, production-ready transaction processing.

Bats Testing Patterns

Implements robust, automated unit tests for shell scripts using the Bash Automated Testing System (Bats) framework.

Temporal Python Testing

Implements comprehensive testing suites for Temporal workflows using pytest, time-skipping, and determinism validation.

Skill Test Fixture

Validates standalone skill discovery and execution patterns to ensure core functionality and tool access within the Claude Code environment.

DeFi Protocol Templates

Implement production-ready decentralized finance protocols using standardized templates for staking, AMMs, and governance.

Kubernetes Security Policies

Implements production-grade security for Kubernetes clusters using NetworkPolicies, RBAC, and Pod Security Standards.

Solidity Smart Contract Security

Secures Ethereum and EVM-compatible smart contracts by implementing industry-standard security patterns and vulnerability prevention techniques.

Code Review Excellence

Transforms code reviews into collaborative knowledge-sharing opportunities through systematic analysis and actionable, constructive feedback.

UI Check Framework

Builds and extends extensible UI self-check frameworks for Web UIs using Playwright to automate visual and functional quality assurance.

Web3 Smart Contract Testing

Automates and optimizes the testing of Solidity smart contracts using the Hardhat and Foundry frameworks.

SAST Configuration & Security Scanning

Configures Static Application Security Testing (SAST) tools for automated vulnerability detection and DevSecOps integration across multiple programming languages.

Code Review Excellence

Elevates code review practices through constructive feedback patterns, systematic checklists, and language-specific quality standards.

E2E Testing Workflow

Implements a structured end-to-end testing workflow using test-driven development principles and framework-agnostic guidance.

PCI Compliance & Security

Implements PCI DSS standards and secure payment handling practices to protect sensitive cardholder data and maintain regulatory compliance.

TCR Practice (Test && Commit || Revert)

Implements the high-discipline TCR workflow to enforce atomic code changes and guarantee a constant state of passing tests.

Bats Shell Testing Patterns

Master the Bash Automated Testing System (Bats) to create comprehensive unit tests for shell scripts and CLI utilities.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Rigorous Testing Protocol

Enforces a strict testing-first methodology to ensure every code change is validated through unit, integration, and E2E tests.

Tmux TDD Orchestrator

Orchestrates Test-Driven Development workflows by reading and managing test output directly from tmux panes across multiple programming languages.

Web Application Testing with Playwright

Automates end-to-end web testing and UI verification using Python Playwright scripts.

Auth Implementation Patterns

Implements secure authentication and authorization systems including JWT, OAuth2, and session-based access control.

SAST Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

E2E Testing Expert

Implements and optimizes end-to-end test suites using Playwright and Cypress to ensure robust web application reliability.

Vault & Secrets Management

Streamlines HashiCorp Vault workflows and Kubernetes secret management using industry-standard security best practices.

Solidity Security & Smart Contract Audit

Implements industry-standard security patterns and vulnerability mitigations for Solidity smart contracts to prevent high-risk exploits.

ShellCheck Quality & Static Analysis

Optimizes shell script reliability and portability through expert ShellCheck configuration and static analysis guidance.