Security & Testing Claude 스킬

Bitwarden Security Threat Modeling

Generates comprehensive security threat models and data flow diagrams following Bitwarden's formal engagement framework.

React Effects Auditor

Audits React codebases to eliminate redundant useEffect hooks and optimize component performance based on official best practices.

Security Auditor

Performs interactive source code security audits using a structured Map & Probe methodology to identify and verify vulnerabilities.

Design Challenger

Evaluates system architectures and protocols for overcomplication to propose streamlined, robust design alternatives.

Scribe Security Audit Writer

Generates professional-grade security audit reports, issue write-ups, and system security models with objective technical precision.

Pixel-Perfect UI Testing

Automates visual regression testing and pixel-perfect design matching for frontend components using an intelligent auto-fix loop.

Audit Scoping & Estimation

Conducts project scoping and security audit effort estimation using logical chunking and automated metric analysis.

XSS Vulnerability Scanner

Scans and identifies Reflected, Stored, and DOM-based XSS vulnerabilities within web applications and codebases.

XSS Vulnerability Scanner

Scans web applications for reflected, stored, and DOM-based Cross-Site Scripting (XSS) vulnerabilities to ensure robust frontend security.

Vulnerability Scanner & Security Auditor

Identifies and reports security vulnerabilities, CVEs, and insecure configurations across codebases and dependencies.

Visual Regression Tester

Automates UI consistency checks by capturing screenshots and comparing them against established baselines using industry-standard tools.

Automated Test Report Generator

Generates comprehensive test reports with coverage metrics, trend analysis, and stakeholder-ready exports in HTML, PDF, or JSON formats.

Automated Test Report Generator

Generates comprehensive test reports with coverage metrics and trend analysis across HTML, PDF, and JSON formats.

Test Environment Manager

Automates the setup and management of isolated, reproducible test environments using Docker Compose and Testcontainers.

Automated Test Doubles Generator

Generates mocks, stubs, spies, and fakes automatically to streamline unit testing and dependency isolation across various testing frameworks.

Test Double Generator

Generates mocks, stubs, and spies for unit testing by automatically analyzing code dependencies and framework requirements.

Realistic Test Data Generator

Generates realistic, schema-compliant synthetic data sets for software testing, database seeding, and performance analysis.

Test Data Generator

Generates realistic, schema-compliant test data including user profiles, product catalogs, and transactional records for software testing and development.

SOC2 Audit Helper

Streamlines SOC2 compliance by automating evidence gathering, identifying security control gaps, and generating readiness reports.

SOC2 Compliance & Audit Helper

Simplifies SOC2 audit preparation by automating evidence collection, identifying compliance gaps, and generating readiness reports.

Smoke Test Runner

Executes automated verification suites to ensure application health and core functionality after deployments or configuration changes.

Session Security Auditor

Identifies session management vulnerabilities and security flaws within your codebase to ensure robust user authentication and protection.

Session Security Checker

Audits and analyzes codebase session management to identify vulnerabilities like session fixation and improper expiration policies.

Security Vulnerability & Penetration Tester

Automates comprehensive security vulnerability testing and penetration scans to identify OWASP Top 10 flaws and injection risks.

Automated Security Vulnerability Scanner

Automates security vulnerability testing for applications and APIs to identify OWASP Top 10 risks and critical software flaws.

Security Misconfiguration Finder

Identifies and remediates security vulnerabilities in infrastructure-as-code, application configurations, and system settings.

Security Misconfiguration Auditor

Identifies and remediates potential security vulnerabilities in infrastructure-as-code, application configurations, and system settings.

Security Incident Responder

Provides structured guidance and specialized playbooks for managing, investigating, and remediating cybersecurity breaches and attacks.

Secrets Manager Integrator

Automates the secure integration and configuration of secrets management tools like HashiCorp Vault and AWS Secrets Manager into your infrastructure.

Regression Test Tracker

Tracks and automates regression testing suites to ensure code stability and prevent unintended regressions during development.