Security & Testing Claude 스킬

Statistical Testing & Simulation Validation

Ensures the reliability of probabilistic code and Monte Carlo simulations through rigorous statistical assertions and stable testing patterns.

Web App Testing with Playwright

Automates local web application testing and browser interaction using Playwright and managed server lifecycles.

Bats Shell Testing Patterns

Provides standardized patterns for writing robust shell script tests using the Bash Automated Testing System (Bats).

Phoenix Truth-Case Orchestrator

Orchestrates end-to-end truth-case validation and failure triage for complex VC fund-modeling platforms.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure high-quality, verified code implementation for every feature and bug fix.

Test Pyramid Strategy

Optimizes software quality by enforcing a structured test pyramid and controlling end-to-end test sprawl through strict admission criteria.

AI Evaluation & Metrics Planner

Manages evaluation metrics, thresholds, and measurement methods to ensure project progress and quality are quantifiable and documentable.

PDF Processing and Validation

Implements robust PDF upload validation and deterministic text extraction workflows for document ingestion pipelines.

RSpec Testing

Generates and refines comprehensive RSpec test suites for Ruby and Rails applications using industry best practices.

Brakeman Rails Security

Scans Ruby on Rails applications for security vulnerabilities using static analysis to ensure secure coding practices.

Web Application Testing

Automates and tests local web applications using Playwright for robust UI verification and debugging.

Better Auth for Cloudflare Workers

Implements production-ready, self-hosted authentication for TypeScript and Cloudflare Workers using D1, Drizzle, or Kysely.

Verification Before Completion

Enforces a strict evidence-first policy for all task completion claims to ensure code reliability and build trust.

Test-Driven Development (TDD)

Enforces a rigorous Red-Green-Refactor workflow to ensure high-quality, verified production code through test-first implementation.

Skill Reviewer & Auditor

Audits Claude skills through a systematic 9-phase review process to ensure production-grade quality, security, and API accuracy.

Test-Driven Development (TDD) Superpowers

Enforces a strict Red-Green-Refactor workflow to ensure all production code is verified by failing tests before implementation.

Rails 8 Password Reset Flow

Implements secure, gem-free password recovery workflows using Rails 8's native token generation features.

Systematic Debugging

Enforces a rigorous, four-phase root cause analysis process to eliminate guesswork and prevent recurring bugs during development.

Policy-as-Code End-to-End Enforcement

Eliminates security gaps by enforcing standardized Kyverno policies across local development, CI/CD pipelines, and Kubernetes runtime environments.

Structure Recovery & Reverse Engineering

Reconstructs complex C/C++ data structures by analyzing memory access patterns and function call chains in decompiled code.

Rails Test Auth Helpers

Simplifies authentication testing in Rails applications using standardized RSpec and FactoryBot patterns for controllers, system tests, and API requests.

Playwright Page Object Model

Organizes Playwright E2E tests using scalable Page Object Models, custom fixtures, and standardized file structures.

Verification Before Completion

Enforces rigorous, evidence-based verification through command execution before any work is claimed as complete or submitted.

Session Management Pattern

Implements secure, database-backed session tracking and multi-device management for web applications.

Rev-Symbol: Reverse Engineering Symbol Recovery

Restores function names and symbols in decompiled binaries by analyzing code patterns, constants, and cross-references.

Test-Driven Development (TDD) Workflow

Enforces a strict Red-Green-Refactor cycle to ensure all production code is verified by failing tests before implementation.

Verification Before Completion

Enforces a rigorous evidence-based workflow that requires real-time command output before any task is marked as complete.

Playwright Browser Testing

Automates headless browser testing and end-to-end web verification using the Playwright MCP server.

Test Code Review & Quality Assurance

Reviews test code quality and coverage to ensure robust, maintainable, and efficient software testing suites.

Frontend Code Reviewer

Conducts automated reviews of TypeScript and JavaScript code to identify performance bottlenecks, quality issues, and logic errors.