Security & Testing Claude 스킬

MoAI AST-Grep Code Intelligence

Performs structural code search, security scanning, and semantic refactoring using Abstract Syntax Tree analysis across 40+ languages.

Security Audit & OWASP Compliance

Performs comprehensive security reviews and code audits using the OWASP Top 10 framework to identify and remediate vulnerabilities.

Verification & Quality Assurance

Ensures code reliability and agent output quality using real-time truth scoring and automated rollback systems.

Professional Code Reviewer

Performs in-depth code quality analysis and provides actionable, structured feedback to improve maintainability, security, and performance.

Clerk Authentication Specialist

Implements modern, secure authentication flows using Clerk, including WebAuthn, passkeys, and pre-built UI components.

Security Compliance & Scanning

Automates security audits, vulnerability scanning, and compliance validation for software development workflows.

TDD Workflow

Automates the Test-Driven Development cycle for autonomous feature implementation and high-integrity code generation.

TDD Workflow Pro

Enforces the Red-Green-Refactor cycle to ensure test-first development and high code quality.

MoAI Development Workflow & QA

Automates the full development lifecycle from test-driven development and debugging to performance optimization and multi-agent code reviews.

Security & Compliance Validator

Protects applications by automating security audits, vulnerability scanning, and environment compliance checks.

Scale Game Problem Solver

Identifies architectural bottlenecks and hidden edge cases by stress-testing software logic at extreme scales.

Code Quality & Security Reviewer

Ensures code excellence and security by performing systematic reviews based on industry best practices and rigorous safety standards.

Protocol Reverse Engineering

Analyzes, documents, and dissects complex network protocols for security research, debugging, and interoperability.

Code Testing & TDD Suite

Generate and run unit and integration tests using pytest and Jest with support for mocks, fixtures, and coverage reporting.

TDD Wada Style

Implements high-quality software using the Red-Green-Refactor cycle and behavior-driven test patterns inspired by Takuto Wada's philosophy.

AIDA Project Fixer

Automates the remediation of incomplete software projects by iteratively satisfying 19 distinct quality gates across backend, frontend, and infrastructure.

Security Compliance & Vulnerability Scanner

Automates security validation, vulnerability scanning, and compliance auditing to ensure secure software development cycles.

Automated Testing & QA

Generates and runs comprehensive test suites with automated coverage reporting and documentation-backed best practices.

Security Remediation Library

Provides a centralized index of security remediation guides to help developers fix injection, cryptography, authentication, and configuration vulnerabilities.

Scale Game Architect

Validates software architecture by simulating behavior at extreme scales to uncover hidden bottlenecks and production edge cases.

Authentication Management

Secures and manages authentication flows between Laravel Sanctum backends and Next.js frontends while preventing environment configuration leaks.

Hookify Rule Architect

Enables developers to create custom guardrails and automation rules for Claude Code by defining patterns that trigger specific warnings or actions.

Security & Compliance Checklist

Applies comprehensive security audits and OWASP-aligned checks to identify vulnerabilities in application code and architecture.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary timeouts with condition polling to wait for actual state changes.

Security Sentinel

Performs comprehensive security audits and vulnerability assessments to identify OWASP risks and hardcoded secrets.

Remediation: Injection Vulnerabilities

Provides actionable code patterns and best practices to fix SQL injection, command injection, and cross-site scripting (XSS) across multiple programming languages.

Repomix Safe Mixer

Prevents credential leaks by automatically scanning and removing hardcoded secrets before packaging codebases with Repomix.

Bug Hunter

Diagnoses root causes and implements precise fixes for code errors, crashes, and unexpected behaviors.

Security Reviewer

Identifies security vulnerabilities and provides practical, framework-specific remediation strategies to ensure code safety.

Quality Severity Triage

Classifies code issues, security findings, and review comments into prioritized severity levels to streamline triage and merge decisions.