Security & Testing Claude 스킬

Windsurf Code Privacy & Compliance

Manages code privacy settings and data retention policies to ensure regulatory compliance within Windsurf Enterprise environments.

Granola Security Basics

Implements and audits security best practices for protecting sensitive Granola meeting data and ensuring enterprise-grade compliance.

Deepgram Data Compliance & Handling

Implements secure audio storage, PII redaction, and automated retention policies for Deepgram transcription workflows.

Granola Enterprise RBAC

Configures and manages enterprise-grade role-based access control and security policies for Granola meeting notes.

Security Engineering

Applies adversarial thinking and robust security patterns to design, review, and harden software systems against vulnerabilities.

Refactor Verification

Verifies code refactors deterministically using AST-based comparison to ensure structural changes don't introduce unintended logic modifications.

Groq Security Basics

Implements Groq API security best practices including secret management, least privilege access control, and audit logging.

Clerk Performance Tuning

Optimizes Clerk authentication workflows to reduce latency and improve application responsiveness.

Perplexity Integration Pitfalls & Best Practices

Identifies and resolves common anti-patterns, security vulnerabilities, and performance bottlenecks in Perplexity API integrations.

Exa API Security & Access Control

Implements industry-standard security best practices for Exa API keys, secret management, and access control policies.

Clerk Privacy & GDPR Compliance

Implements robust user data management, privacy controls, and GDPR compliance features for applications using Clerk authentication.

Deepgram Security & Key Management

Implements security best practices for Deepgram API integrations, focusing on key management, data protection, and access control.

Quolar Setup Wizard

Streamlines the configuration and deployment of the Quolar AI-powered test automation engine within your development environment.

Instantly Security Basics

Implements enterprise-grade security protocols, secret management, and access controls for Instantly API integrations.

Retell AI Security Basics

Implements security best practices for Retell AI integrations, including secret management, access control, and audit logging.

API Contract Validator

Automates the validation of API contracts using consumer-driven testing frameworks like Pact and Spring Cloud Contract.

Linear to Playwright Test Automator

Transforms Linear tickets into self-healing Playwright E2E tests with automated CI integration and PR creation.

Rigorous Work Verification

Enforces evidence-based task completion by requiring fresh command output before making any success claims.

Systematic Debugging

Implements a rigorous four-phase framework to identify root causes and eliminate trial-and-error debugging thrashing.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, verified production code through failing tests.

Supabase Policy Guardrails

Enforces security best practices and code quality rules for Supabase integrations through automated linting and CI/CD guardrails.

Data Privacy Scanner

Scans codebases for sensitive information leaks and data privacy vulnerabilities to ensure compliance with global protection standards.

Clerk Authentication Hello World

Verifies Clerk authentication integrations by implementing initial protected routes and authenticated API calls.

Windsurf Pitfalls & Best Practices

Identifies and fixes common integration anti-patterns, security vulnerabilities, and performance bottlenecks in Windsurf-based applications.

Access Control Auditor

Audits access control implementations to identify security vulnerabilities, overly permissive roles, and authorization misconfigurations.

API Load & Stress Tester

Executes automated load and stress testing to validate API performance, scalability, and system stability.

Security Incident Responder

Guides the investigation, documentation, and remediation of security breaches using forensic analysis and structured playbooks.

Temporal Python Testing

Implements robust testing strategies for Temporal workflows using pytest, time-skipping, and activity mocking.

Root Cause Tracing

Systematically traces software bugs backward through the call stack to identify original triggers and implement permanent source-level fixes.

SAST Configuration & Security Scanning

Configures and optimizes static application security testing tools to automate vulnerability detection within the development lifecycle.