Security & Testing Claude 스킬

Global Error Handling

Implements robust error management strategies including centralized handling, graceful degradation, and user-friendly messaging to ensure application stability and security.

Testing Test Writing

Guides the strategic creation of tests by focusing on core user flows and behavioral outcomes while maintaining development velocity.

Baselayer Analysis & Investigation

Employs an evidence-based methodology to investigate codebases, diagnose root causes, and map system architectures with calibrated confidence levels.

Comprehensive Code Review

Performs a rigorous 7-point code audit covering security, performance, and maintainability to ensure production-grade software quality.

Testing Pest

Generates comprehensive Pest test suites for Laravel projects, ensuring high coverage across controllers, services, and Livewire components with standardized organizational patterns.

Ruby Community Style

Implements idiomatic Ruby patterns and strict structural guidelines based on the RuboCop Community Ruby Style Guide and Sandi Metz rules.

Dependency Evaluator

Evaluates the health and risk of programming dependencies through a systematic 10-signal analysis to prevent technical debt and security vulnerabilities.

QA Security Scan

Conducts comprehensive security audits and vulnerability assessments using OWASP-aligned checklists and automated scanning integrations.

Secrets Management for CI/CD

Implements secure credential handling and secret rotation across major cloud providers and CI/CD platforms to prevent sensitive data leaks.

Security Expertise

Conducts comprehensive security audits and vulnerability scans using OWASP patterns, CWE analysis, and STRIDE threat modeling.

TDD Workflow Guide

Guides developers through the test-driven development cycle to ensure robust code through red-green-refactor iterations.

Wasp Code Review

Performs deep-dive audits of Wasp framework applications to ensure architectural compliance, security, and performance standards.

ShellCheck Configuration & Static Analysis

Enhances shell script quality and reliability by implementing standardized ShellCheck configurations and automated linting workflows.

Remediation Configuration Security

Provides actionable security fix patterns for configuration and deployment vulnerabilities across multiple programming languages.

PCI Compliance Manager

Implements rigorous PCI DSS standards to secure payment processing workflows and protect sensitive cardholder data.

Advanced Debugging Strategies

Implements systematic debugging techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

Vulnerability Patterns Index

Provides a centralized index for routing Claude to universal and language-specific security vulnerability detection patterns.

Fact-Checking & Self-Assessment

Validates factual claims, assesses implementation quality, and ensures AI outputs meet production-grade standards through automated self-verification.

Python Testing

Implements robust Python testing suites using pytest, focusing on isolated test design, mocking external dependencies, and asynchronous execution patterns.

Unit Test Generator

Generates robust pytest suites for Python applications with specialized support for fixtures, parametrization, and PyTorch-based operations.

Frontend Debug

Debugs frontend UI/UX issues, console errors, and network failures through empirical browser observation and systematic investigation using Chrome DevTools.

Global Coding Style

Enforces consistent formatting, naming conventions, and type safety across PHP and TypeScript environments while automating code quality standards.

Global Validation

Implements robust server-side validation, data sanitization, and allowlisting to ensure application security and data integrity.

Temporal Python Testing

Simplifies testing Temporal workflows and activities in Python using time-skipping, mocking, and determinism validation.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress best practices to ensure application reliability.

Security Remediation Library

Provides a centralized index of security remediation guides to help developers fix injection, cryptography, authentication, and configuration vulnerabilities.

Global Validation

Implements comprehensive input validation and sanitization strategies to ensure data integrity and security across all entry points.

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and RBAC configurations.

TDD Methodology

Enforces a strict Red-Green-Refactor cycle to ensure code quality through test-driven development within Claude Code.

Language-Specific Security Vulnerability Patterns

Identifies language-specific security vulnerabilities across major programming stacks using optimized regex and grep patterns.