Security & Testing Claude 스킬

Secrets Management

Secures sensitive credentials and automates secret rotation across CI/CD pipelines and cloud environments.

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicy, Pod Security Standards, and RBAC to ensure cluster integrity and isolation.

Temporal Python Testing

Implements comprehensive testing strategies for Temporal workflows in Python using pytest, time-skipping, and determinism validation.

Binary Analysis Patterns

Analyzes compiled binaries through expert disassembly, decompilation, and control flow reconstruction techniques.

QA Test Planner & Design Validator

Generates comprehensive test plans, manual test cases, and design-to-code validations using Figma MCP integration.

STRIDE Threat Analysis Patterns

Implements the STRIDE methodology to systematically identify, document, and mitigate security threats in system architectures.

Screen Reader Accessibility Testing

Validates web application accessibility and screen reader compatibility through comprehensive testing guides and implementation patterns.

Bats Testing Patterns

Implements robust unit and integration testing for shell scripts using the Bash Automated Testing System (Bats).

Auth Implementation Patterns

Implements secure authentication and authorization systems using industry-standard patterns like JWT, OAuth2, and RBAC.

Evidence Photo Analyzer

Automates forensic analysis of digital photographs to extract metadata, detect tampering, and generate legal evidence catalogs.

GitHub Workflow Security Patterns

Implements secure, production-grade GitHub Actions workflows using canonical security patterns and CodeQL best practices.

.NET xUnit v3 Testing

Guides the implementation of robust unit and integration tests using the xUnit v3 framework for .NET 8.0+ projects.

Installer Test Fixture

Validates multi-platform installer logic and content transformer functionality through standardized testing fixtures.

Regulatory Mapping Validator

Validates data mappings and field specifications for regulatory reporting templates to ensure 100% compliance integrity before production.

Verification Before Completion

Enforces evidence-based task completion by requiring fresh command execution and output verification before any success claims are made.

PHP Mutation & Fuzz Testing

Validates test suite effectiveness and identifies edge cases in PHP applications using mutation testing with Infection.

Frontend Performance Guardrail

Automates performance testing and Core Web Vitals enforcement to ensure high-speed frontend delivery.

Dev Cycle Property Testing

Verifies domain invariants through automated property-based testing to ensure business logic holds across all possible input variations.

Vue.js E2E Testing Orchestrator

Automates end-to-end testing for Vue.js applications using Playwright to validate user flows across multiple browsers.

Testing Anti-Pattern Guard

Prevents common testing mistakes by enforcing high-quality test patterns and blocking harmful mocking practices.

Enterprise TDD Workflow

Enforces strict test-driven development cycles with 80%+ coverage across TypeScript and Kotlin ecosystems.

Vue.js Accessibility Tester (Gate 1)

Ensures Vue.js components meet WCAG 2.1 AA standards through automated axe-core scanning and keyboard navigation validation.

Frontend E2E Testing Gate

Automates comprehensive end-to-end testing cycles using Playwright to validate user flows across multiple browsers and responsive viewports.

Dev Chaos Testing Gate

Automates resilience testing using Toxiproxy to ensure systems handle network failures and latency without crashing.

Legal QA Review & Anti-Hallucination

Performs rigorous factual verification and citation integrity checks on legal analysis to prevent AI hallucinations.

Frontend Accessibility Guardrail

Ensures WCAG 2.1 AA compliance in frontend components through automated axe-core scanning and keyboard navigation validation.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor methodology to ensure high-quality, verified code through failing tests first.

Roundtable Circle

Orchestrates multi-agent code reviews and automated security audits using specialized AI reviewer teams and a structured 7-phase lifecycle.

Dev Unit Testing (Gate 1)

Automates the unit testing lifecycle by enforcing TDD methodologies and an 85% minimum code coverage threshold.

Production Readiness Auditor

Conducts comprehensive 44-dimension production-readiness audits aligned with Bee engineering standards to ensure high-quality, stable software deployments.