Security & Testing Claude 스킬

Playwright E2E Testing

Implements robust, accessibility-first end-to-end testing patterns using the Playwright framework for comprehensive web application validation.

Authentication Security Validator

Analyzes and validates authentication implementations to ensure compliance with security best practices and industry standards.

Business Logic Vulnerability Detection

Identifies and remediates subtle security flaws in AI-generated code, such as race conditions, integer overflows, and calculation errors that bypass standard functional tests.

Authentication Security Validator

Validates authentication implementations against security best practices to identify vulnerabilities in JWT, OAuth, and session management.

API Integration Testing

Validates .NET microservice endpoints using curl to ensure secure JWT authentication, proper CRUD functionality, and multi-tenant business isolation.

IDOR Vulnerability Testing

Conducts systematic security audits to identify and remediate Insecure Direct Object Reference (IDOR) vulnerabilities in web applications and APIs.

Security Review & Hardening

Audits code for vulnerabilities and enforces industry-standard security best practices across authentication, data handling, and infrastructure.

Eval-Driven Development (EDD) Harness

Implements a formal evaluation framework for Claude Code sessions to ensure code reliability through capability and regression testing.

Smoke Test Runner

Executes automated smoke test suites to verify core application functionality and system health after deployments or updates.

Security Testing & Verification

Verifies web application security through automated and manual testing of CSRF protection, rate limiting, input validation, and security headers.

Damage Control Security

Secures your development environment by intercepting and blocking destructive terminal commands and protecting sensitive files from accidental exposure.

Go Testing Expert

Generates and guides Go testing strategies using a pyramid approach with a focus on in-memory dependencies and 100% coverage for leaf types.

TDD Workflow Enforcer

Implements a rigorous test-driven development cycle to ensure high-quality code with 80%+ coverage across unit, integration, and E2E tests.

Security Review & Hardening

Performs comprehensive security audits and implements industry-standard protection patterns for web applications and blockchain integrations.

Eval Harness

Implements Eval-Driven Development (EDD) principles within Claude Code to ensure reliable, regression-free AI-generated code.

Defense-in-Depth Validation

Implements multi-layered data validation and Shannon validation gates to eliminate bugs structurally across every system layer.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure code quality and reliability through test-first implementation.

Pentest Command Reference

Provides a comprehensive and categorized reference for industry-standard penetration testing tools and security assessment commands.

Aura Frog Test Writer

Automates the creation of comprehensive unit, integration, and E2E tests across multiple frameworks using a structured TDD workflow.

Network Lab Configuration & Testing

Configures and tests essential network services like HTTP, HTTPS, SNMP, and SMB for penetration testing and security lab environments.

Security & Compliance Agent

Secures backend applications against OWASP threats and ensures regulatory compliance through automated scanning and robust authentication patterns.

Network 101: Pentest Lab Setup

Configures and tests network services like HTTP, HTTPS, SNMP, and SMB for security research and penetration testing labs.

Network 101 Lab Setup

Configures and tests common network services including HTTP, HTTPS, SNMP, and SMB for penetration testing environments.

Test-Driven Development (TDD)

Enforces a disciplined Red-Green-Refactor workflow to ensure all production code is verified by failing tests first.

Network 101: Lab Configuration

Configures and tests common network services including HTTP, HTTPS, SNMP, and SMB for penetration testing lab environments.

Systematic Debugging

Enforces a rigorous four-phase scientific process to identify root causes and implement stable fixes for technical issues.

Frontend Bugfix Pro

Debugs and resolves frontend test failures and React/TypeScript bugs using a structured TDD workflow and confidence-based scoring.

Verified Work Completion

Enforces rigorous evidence-based verification before any work status is claimed, committed, or submitted for review.

Next.js Supabase Auth Integration

Implements secure, production-ready authentication using Supabase Auth and the Next.js App Router architecture.

Test-Driven Development (TDD)

Enforces a strict test-first development workflow to ensure high-quality, bug-free code through the Red-Green-Refactor cycle.