Security & Testing Claude 스킬

Ghidra Headless Analysis

Automates binary reverse engineering and decompilation using Ghidra to extract C code, symbols, and call graphs.

OpenAI Security Best Practices

Performs language-specific security reviews and implements secure-by-default coding patterns for Python, JavaScript, and Go projects.

FFUF Web Fuzzing

Streamlines web application fuzzing and discovery using ffuf for security audits and penetration testing.

Security Ownership Mapper

Analyzes git history to map security ownership, calculate bus factors, and identify risks in sensitive codebases.

OpenAI Security Threat Model

Generates repository-grounded AppSec threat models by analyzing trust boundaries, assets, and potential abuse paths.

WooYun Security Methodology

Provides expert-level web vulnerability testing strategies and checklists derived from nearly 90,000 real-world security cases.

Nuxt Better Auth

Simplifies authentication implementation in Nuxt 4+ applications using the Better Auth framework and NuxtHub.

Playwright Testing Pro

Implements robust end-to-end testing suites using Playwright with best practices for browser automation and test stability.

Deep Debug

Executes a multi-agent investigation to resolve complex software bugs through parallel evidence gathering and cross-referenced analysis.

Testing Patterns

Automates integration testing using declarative YAML specs and context-preserving sub-agents for MCP servers, APIs, and browsers.

Firebase Authentication

Automates the implementation of secure Firebase Authentication flows, including social sign-in, multi-factor auth, and session management.

AI Code Reviewer

Automates comprehensive code analysis to detect bugs, security vulnerabilities, and quality issues with actionable feedback.

Axiom iOS Testing Router

Orchestrates comprehensive testing workflows for Apple platforms, covering unit tests, UI automation, and advanced asynchronous debugging.

Plugin Validation & Testing

Validates skill parsing logic and integration workflows for Claude Code plugin development.

Test Coverage Analyzer

Performs on-demand test coverage analysis to identify untested code paths and improve software quality across multiple tech stacks.

Quality Gates & Iteration Loops

Implements structured validation checkpoints, automated feedback loops, and multi-model consensus to ensure production-grade code quality.

Code Security & Quality Audit

Performs comprehensive security scans and code quality assessments to identify vulnerabilities, exposed secrets, and technical debt.

Invalid Frontmatter Tester

Provides a deliberately malformed configuration to test error handling and validation logic in Claude Code plugin loaders.

Validation & Quality Orchestrator

Validates technical specifications, code implementations, and governance compliance using a multi-perspective agentic approach.

Automated Test & Ownership Enforcer

Executes, fixes, and verifies test suites while enforcing strict code ownership to ensure a 100% passing codebase.

Intelligent Debugging Partner

Diagnoses and resolves complex software bugs using a scientific approach and agentic root cause analysis.

Feature Next

Orchestrates a structured feature-driven development workflow using a TDD-enforced cycle to ensure code quality and implementation accuracy.

Proof of Work Validation

Generates verifiable proof artifacts and confidence scores to validate autonomous task completion and enable auto-approvals.

Systematic Debugging

Enforces a rigorous, hypothesis-driven methodology to identify and resolve the root cause of software defects.

Localization & i18n Testing

Automates internationalization and localization testing to ensure global products function correctly across different languages, regions, and cultural formats.

Risk Classification

Classifies task risk levels using a 4-tier model and automated verification gates to ensure safe AI agent execution.

QE Contract Testing

Automates API contract verification, schema validation, and backward compatibility testing for REST, GraphQL, and event-driven systems.

Testing Writing Guidelines

Enforces a minimalist testing strategy by focusing on critical user flows, clear naming conventions, and fast execution.

Universal Testing Strategies

Implements language-agnostic testing patterns and best practices across the entire testing pyramid to ensure robust code quality.

QE Code Intelligence

Streamlines codebase understanding through knowledge graph construction and semantic search while reducing AI token usage by 80%.