Security & Testing Claude 스킬

Fresh-Eyes Review

Performs a systematic final sanity check after tests pass to catch security vulnerabilities, edge cases, and business logic errors before code is committed.

LimaCharlie Test Sensor Deployment

Deploys a temporary LimaCharlie EDR agent to local Linux or macOS environments for rapid security testing and detection rule validation.

Binary Analysis & Reverse Engineering

Provides a systematic framework for analyzing compiled binaries, understanding program behavior, and identifying security vulnerabilities without source code access.

Security FP Pattern Finder

Automates the identification and suppression of false positive security alerts through deterministic pattern analysis and surgical rule generation.

Test-Driven Development (TDD)

Guides developers through the Red-Green-Refactor cycle to implement robust, test-first code across multiple programming languages.

Plugin Security Scanner

Scans Claude Code plugins and skills to detect malicious code, deceptive instructions, and unauthorized credential access.

Dapr Middleware Validator

Validates Dapr HTTP middleware configurations to ensure security best practices, correct pipeline ordering, and proper secret management.

IDA Plugin Creator

Generates and packages IDAPython plugins for IDA Pro 9.x using standardized templates and HCLI-compatible manifest creation.

IDA Domain Scripting

Automates binary analysis and reverse engineering tasks using IDA Pro and the IDA Domain Python API.

Linux Privilege Escalation

Executes systematic security assessments on Linux systems to identify and exploit misconfigurations, vulnerable services, and privilege escalation vectors.

Data Encryption & Decryption

Secures sensitive information by providing seamless data encryption and decryption capabilities using AES, RSA, and other standard algorithms.

Python Doctor

Audits Python codebases for security vulnerabilities, performance bottlenecks, and architectural antipatterns to provide a comprehensive health score and remediation plan.

Scale Game Architecture Testing

Exposes hidden architectural weaknesses and scalability bottlenecks by simulating system behavior at extreme scales.

Agent Failure Simulation & Testing

Verifies AI agent reliability by running controlled failure simulations and scoring adherence to emergency procedures.

Checklist Health Analysis

Optimizes development and QA workflows by analyzing checklist effectiveness and identifying process gaps.

QA Review Remediation

Resolves findings from QA code reviews by applying clean code refactoring and automated verification tests.

Security Audit & Hardening

Performs comprehensive security audits of codebases, dependencies, and infrastructure using OWASP standards and architectural reviews.

Spring Boot Security Implementation

Implements secure authentication and authorization patterns for Spring Boot 4 using Spring Security 7's mandatory Lambda DSL.

Requirement Traceability & Compliance

Generates automated traceability matrices linking specifications to implementation and test coverage for IEEE 830 compliance.

Release Readiness Guard

Conducts comprehensive pre-release audits with structured GO/NO-GO reports to ensure production quality.

Code Health & Tech Debt Auditor

Scans codebases for technical debt, dead code, and architectural violations to maintain long-term code hygiene.

Code Quality & Static Analysis

Validates code integrity by performing automated linting and type checking to ensure high-quality, production-ready implementations.

Code Quality Assurance

Ensures codebase integrity through automated type checking, linting, and formatting within the Claude Code environment.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor workflow by requiring mandatory failing tests and execution evidence before any production code is written.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary timeouts with intelligent condition polling and event-driven waiting patterns.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to eliminate data-driven failures and make bugs structurally impossible.

Systematic Debugging

Eliminates guesswork by enforcing a rigorous four-phase framework to identify root causes before implementing any code fixes.

Scientific Python Testing

Writes and organizes robust test suites for scientific Python packages using pytest and community best practices.

Compliance Audit

Audits development branches to ensure adherence to project principles including DDD, TDD, DRY, and formal shipping workflows.

ROT13 Encryption

Encrypts and decrypts text messages using the classic ROT13 substitution cipher via bash scripts.