Security & Testing Claude 스킬

RLS Audit & Multi-tenant Safety

Audits Row Level Security (RLS) configurations and ensures multi-tenant data isolation for secure server-side access.

Frontend Auth & JWT Patterns

Implements secure authentication flows using Better Auth and JWT token management for modern web applications.

Codebase Reviewer

Performs comprehensive, multi-dimensional codebase audits using parallel AI agents to identify architectural, security, and performance improvements.

TypeScript Any Eliminator

Refactors TypeScript codebases to replace 'any' types with robust, specific type definitions and strict interfaces.

CLI Testing Patterns

Standardizes CLI application testing across Node.js and Python using industry-standard frameworks and best practices.

PCI Compliance & Secure Payments

Secures payment systems by implementing PCI DSS requirements, including tokenization, encryption, and strict data handling protocols.

Team Authorization & RBAC

Manages team-based permissions and role-based access control to ensure consistent authorization across client-side actions and server-side functions.

GitHub Security Fixer

Automates the identification, analysis, and remediation of GitHub CodeQL security alerts to maintain high code quality and security standards.

ShellCheck Configuration

Configures and implements ShellCheck static analysis to ensure high-quality, portable, and secure shell scripts.

CI/CD Secrets Management

Implements enterprise-grade secrets management and rotation strategies for secure CI/CD pipelines.

Solidity Security

Implements industry-standard smart contract security patterns and prevents common vulnerabilities in Solidity development.

Systematic Debugging

Enforces a rigorous four-phase framework to identify root causes and implement verified fixes for complex software issues.

Systematic Debugging Framework

Implements a rigorous four-phase debugging methodology to identify root causes and ensure reliable software fixes.

Testing & Benchmarking Infrastructure

Implements comprehensive testing suites with performance benchmarking to track regressions and ensure version-to-version consistency.

Dependency Security Expert

Secures software supply chains by identifying vulnerabilities, implementing automated scanning, and enforcing dependency management best practices.

Security Scanning & Audit Patterns

Automates comprehensive security vulnerability scanning, secret detection, and OWASP compliance auditing for multi-language codebases.

Go TDD Patterns & Best Practices

Implements industry-standard Go testing patterns and conventions to ensure high-quality, testable code.

Code Review Excellence

Enhances software quality through systematic analysis, constructive feedback patterns, and comprehensive security and performance checklists.

MoonBit PBT Workflow Guide

Automates the implementation and optimization of Property-Based Testing in MoonBit projects using the QuickCheck framework.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, fixtures, and mocking to ensure code reliability.

ShellCheck Quality & Static Analysis

Optimizes shell script reliability and portability through expert ShellCheck configuration and static analysis guidance.

JavaScript Testing Patterns

Implements robust testing strategies for JavaScript and TypeScript applications using modern frameworks like Jest and Vitest.

Bats Shell Testing Patterns

Master the Bash Automated Testing System (Bats) to create comprehensive unit tests for shell scripts and CLI utilities.

PCI Compliance & Security

Implements PCI DSS standards and secure payment handling practices to protect sensitive cardholder data and maintain regulatory compliance.

Code Review Excellence

Elevates code review practices through constructive feedback patterns, systematic checklists, and language-specific quality standards.

SAST Configuration & Security Scanning

Configures Static Application Security Testing (SAST) tools for automated vulnerability detection and DevSecOps integration across multiple programming languages.

Web3 Smart Contract Testing

Automates and optimizes the testing of Solidity smart contracts using the Hardhat and Foundry frameworks.

Code Review Excellence

Transforms code reviews into collaborative knowledge-sharing opportunities through systematic analysis and actionable, constructive feedback.

Solidity Smart Contract Security

Secures Ethereum and EVM-compatible smart contracts by implementing industry-standard security patterns and vulnerability prevention techniques.

Kubernetes Security Policies

Implements production-grade security for Kubernetes clusters using NetworkPolicies, RBAC, and Pod Security Standards.