Security & Testing Claude 스킬

TypeScript Testing Methodology

Implements a high-confidence, three-tiered testing framework for TypeScript using dependency injection and behavior-driven patterns.

TypeScript Development & TDD

Implements type-safe, test-driven TypeScript features following strict dependency injection patterns.

Playwright Testing Expert

Streamlines end-to-end testing by providing expert guidance on Playwright configuration, resilient locator strategies, and robust automation patterns.

Risk Profile Assessment

Assesses implementation risks using P×I scoring to prioritize test scenarios and inform quality gates.

Component Quality Analyzer

Audits Claude Code components for effectiveness, security, and usability through systematic quality scoring and optimization suggestions.

Kubernetes Security & Compliance

Hardens Kubernetes clusters using zero-trust models, RBAC design, and automated policy enforcement for production-grade security.

Smart Test Fixer

Systematically identifies and resolves failing tests using intelligent error grouping and prioritized fixing strategies.

Lint and Validate

Ensures code quality and project standards by performing automatic linting, type-checking, and static analysis after every modification.

Red Team Tools & Methodology

Automates reconnaissance and security vulnerability discovery using proven red team methodologies and industry-standard toolsets.

Code Quality Evaluation (The Crucible)

Orchestrates eight specialized AI agents to perform deep code reviews across naming, security, complexity, and testing dimensions.

Agent Evaluation

Evaluates and benchmarks LLM agents using behavioral testing, reliability metrics, and regression analysis to ensure production readiness.

Engineering Testing Anti-Patterns

Enforces high-quality testing standards by preventing mock-related errors and production code pollution during the development process.

AI Review Council

Orchestrates multiple external AI models and specialized subagents to provide consensus-driven code reviews and architectural guidance.

Engineering Verification

Enforces an evidence-based gate function that requires fresh command output and validation before any task is marked as complete.

TDD Engineering Excellence

Enforces a disciplined Red-Green-Refactor cycle to ensure every line of production code is validated by a failing test.

Python Testing

Implements comprehensive testing suites using pytest, covering unit tests, integration tests, and detailed coverage reporting.

Rigorous Engineering Validation

Enforces reproducible testing and evidence-driven verification to ensure every code change is proven reliable before merging.

Council Reference Data

Standardizes multi-agent code reviews through structured response formats, expertise weighting, and automated false-positive filtering.

Root Cause Debugging Playbook

Systematic debugging playbook for tracing failures backward through the call chain to identify and fix bugs at their origin.

Systematic Debugging Framework

Enforces a disciplined, four-phase debugging process to identify root causes and implement stable fixes.

Automated Test Repair

Systematically identifies, groups, and resolves failing test suites using a prioritized multi-stage debugging strategy.

Metasploit Framework Expert

Guides professional penetration testing workflows, vulnerability exploitation, and payload generation using the Metasploit Framework.

Engineering Security & Safety

Implements proactive threat modeling and security-first development practices to minimize attack surfaces and ensure data safety.

Plugin Development & Validation Tools

Validates Claude Code plugin structures and audits hook scripts to prevent silent failures and ensure schema compliance.

Pragmatic TDD & Hexagonal Architecture

Implements resilient, domain-rich business logic using behavior-focused test-driven development and clean architecture patterns.

Ruby RSpec Test Analyzer

Analyzes RSpec failures to provide immediate root-cause diagnosis and actionable debugging steps for Ruby applications.

WordPress Penetration Testing

Conducts comprehensive security audits and vulnerability assessments on WordPress installations using industry-standard tools and methodologies.

Security Documentation Analyst

Generates professional security policies, incident response plans, and compliance documentation to strengthen organizational security posture.

WordPress Penetration Testing

Performs deep security audits, vulnerability scans, and penetration testing workflows for WordPress installations.

CodeRabbit AI Reviews

Performs automated, deep AI code reviews locally to identify security risks, concurrency issues, and complex logic flaws.