Security & Testing Claude 스킬

Security Requirement Extraction

Transforms abstract threat models into actionable security requirements, user stories, and test specifications.

WCAG Accessibility Audit & Compliance

Conducts comprehensive WCAG 2.2 accessibility audits and provides actionable remediation strategies for web applications.

Binary Analysis Patterns

Master reverse-engineering through disassembly, decompilation, and structural pattern recognition in compiled binaries.

Python Testing Patterns

Implements robust Python testing suites using pytest, advanced fixtures, and comprehensive mocking strategies.

Debugging Strategies

Employs systematic debugging techniques and profiling tools to identify and resolve complex code issues across any technology stack.

Threat Mitigation Mapping

Maps identified security threats to specific controls and mitigations to strengthen application defense-in-depth.

Temporal Python Testing

Provides comprehensive strategies and patterns for testing Temporal workflows using pytest, time-skipping, and determinism validation.

Attack Tree Construction

Builds systematic attack tree visualizations and threat path analyses to identify security vulnerabilities and defense gaps.

SAST Configuration & Security Scanning

Configures and optimizes Static Application Security Testing (SAST) tools to automate vulnerability detection within the development lifecycle.

TrendAI IaC Security Scanner

Scans Terraform and CloudFormation templates for security misconfigurations using the TrendAI API.

TrendAI LLM Scanner

Scans LLM endpoints for prompt injection and jailbreak vulnerabilities using the TMAS AI Scanner.

TrendAI Security Setup

Configures the TrendAI Security Scanner by automating API integration and CLI tool installation for Claude Code.

OWASP Security Reviewer

Performs automated OWASP Top 10 security audits to identify vulnerabilities like SQL injection, XSS, and broken authentication in application code.

Parallel Debugging Framework

Systematizes complex issue resolution through structured hypothesis testing and parallel evidence collection to eliminate debugging bias.

STRIDE Threat Analysis Patterns

Implements the STRIDE methodology to systematically identify, categorize, and mitigate security threats during system design and code review.

React Error Boundaries & Recovery

Implements resilient React error handling patterns using error boundaries, fallback UIs, and recovery mechanisms to prevent application crashes.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure web application reliability.

Vue Test Utils Expert

Implements standardized Vue 3 component testing patterns for rendering, user interactions, and state management mocking.

Web3 Smart Contract Testing

Facilitates comprehensive smart contract testing using Hardhat and Foundry frameworks to ensure security, reliability, and gas efficiency.

Solidity Security

Implements industry-standard security patterns and audits Solidity smart contracts to prevent critical blockchain vulnerabilities.

Kubernetes Security Policies

Implement production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and granular RBAC configurations.

Realistic Test Data Generator

Generates high-quality, production-like datasets and custom schemas to accelerate software testing and database population.

Memory Forensics & Malware Analysis

Analyzes system memory dumps to detect malware, extract forensic artifacts, and investigate security incidents using Volatility 3 and professional acquisition tools.

Markdown E2E Testing

Executes end-to-end tests written in plain English markdown using Playwright and Claude's intent-based element recognition.

Council Codebase Intelligence

Conducts multi-agent codebase audits and architectural reviews to provide synthesized, CTO-level insights and readiness assessments.

Data Quality Frameworks

Implements robust data validation pipelines using Great Expectations, dbt tests, and formalized data contracts.

React Testing Library Patterns

Implements robust React component tests using accessibility-first queries and realistic user event simulations.

Validate-Integrity 150

Validates work quality and goal alignment through a rigorous final self-check protocol before delivery.

Web Application Testing

Automates end-to-end testing and UI verification for local web applications using Playwright scripts.

Memory Safety Patterns

Implements memory-safe programming patterns like RAII and ownership across Rust, C++, and C to prevent critical resource management bugs.