Security & Testing Claude 스킬

Root Cause Tracing

Eliminates technical debt by identifying and fixing the origin of software bugs rather than patching superficial symptoms.

Verified Task Completion

Enforces strict validation of all coding tasks through live command output before allowing any claims of success.

Claude Plugin Validator

Validates Claude Code plugin structures, configurations, and security practices to ensure seamless integration and deployment.

Verification Before Completion

Ensures code quality by requiring fresh command-line evidence before claiming any task is finished.

Security Best Practices

Implements core security principles and defensive programming patterns to safeguard applications against common vulnerabilities.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, advanced mocking, and test-driven development (TDD) patterns.

Unit Test Generator

Generates comprehensive unit tests for React components, utility functions, and API routes with a 100% coverage target.

QA Validation & Acceptance Testing

Validates code implementations against specific test cases and acceptance criteria to ensure functional correctness and production readiness.

Unit Test Generation Agent

Generates comprehensive, high-coverage unit tests for functions, React components, and hooks across multiple testing frameworks.

Error Detective

Implements a systematic TRACE framework to identify, analyze, and resolve complex software errors efficiently.

.NET Test Runner

Executes .NET unit tests, generates code coverage reports, and runs performance benchmarks using the dotnet CLI.

Code Reviewer

Performs automated code reviews with security scanning, quality metrics, and performance analysis to ensure production-grade code.

Error Handling Patterns

Implements robust error handling strategies and resilient application patterns across multiple programming languages to ensure software stability.

E2E Testing Patterns

Implements robust end-to-end testing architectures using Playwright and Cypress to ensure application reliability and prevent regressions.

CI/CD Secrets Management

Implements secure handling, storage, and rotation of sensitive credentials across major CI/CD platforms and cloud providers.

Kubernetes Security Policies

Implement defense-in-depth Kubernetes security through network policies, RBAC configurations, and pod security standards.

PCI Compliance & Secure Payments

Implements PCI DSS requirements to secure payment card data and maintain industry-standard payment processing security.

Debugging Strategies

Provides systematic techniques and diagnostic tools to identify, isolate, and resolve complex software bugs across various technology stacks.

Kiro Spec Detector

Identifies modified Kiro specification files by comparing current branch changes against a base branch for optimized testing.

Code Health Auditor

Analyzes codebases to identify technical debt, test coverage gaps, and refactoring opportunities across multiple languages.

PICT Test Designer

Generates optimized pairwise test suites by analyzing requirements and code logic using the PICT methodology.

KrakenD Security Auditor

Performs comprehensive security audits and vulnerability scanning for KrakenD API Gateway configurations to ensure production readiness.

Speck PR Reviewer

Conducts systematic GitHub pull request reviews with VSCode integration, logical file clustering, and automated comment management.

Elixir Testing with ExUnit

Writes comprehensive, production-grade test suites for Elixir applications using ExUnit, Mox, and property-based testing patterns.

Smart Test Fixing

Systematizes the process of identifying, grouping, and fixing failing tests to restore suite health quickly and efficiently.

Hookify Rule Engine

Standardizes the creation and configuration of project-specific rules to monitor Claude's actions and enforce development best practices.

gdUnit4 Test Writer

Generates robust GDScript unit and integration tests for the Godot engine using the gdUnit4 framework.

Cybernetic Open Game Logic

Formalizes off-chain and on-chain agent interactions using compositional game theory and GF(3) Nash equilibrium for secure, value-conserving feedback loops.

Web Application Testing Toolkit

Enables automated testing and debugging of local web applications using Playwright scripts and integrated server management.

SAST Configuration

Configures Static Application Security Testing (SAST) tools to automate vulnerability detection and enforce security standards in application code.