Security & Testing Claude 스킬

PCI Compliance & Secure Payments

Implement PCI DSS compliance requirements and secure payment card data handling practices within your applications.

Web3 Smart Contract Testing

Validates smart contracts through comprehensive testing suites using Hardhat and Foundry to ensure security, gas efficiency, and protocol reliability.

Web Application Testing

Automates local web application testing and UI verification using Playwright and integrated server management tools.

Subagent Skill Testing

Validates and bulletproofs Claude skills using a Red-Green-Refactor cycle and high-pressure subagent scenarios.

Supabase E2E Test Scenarios

Automates end-to-end testing for Supabase applications, covering authentication, database operations, realtime features, and AI-powered vector searches.

Auth Implementation Patterns

Implements secure, industry-standard authentication and authorization patterns including JWT, OAuth2, and RBAC.

Debugging Strategies & Root Cause Analysis

Transforms troubleshooting into a systematic scientific process for identifying, isolating, and fixing complex bugs across any technology stack.

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicies, RBAC, and Pod Security Standards.

ShellCheck Script Quality

Configures and optimizes ShellCheck static analysis to ensure high-quality, portable, and error-free shell scripts.

Solidity Security Master

Implements industry-standard security patterns and audits Solidity smart contracts to prevent vulnerabilities and optimize gas usage.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress to ensure application reliability and prevent regressions.

Root Cause Tracing

Traces software bugs backward through the call stack to identify and resolve original triggers rather than symptoms.

Clerk Organization Management

Implements multi-tenant SaaS features and role-based access control (RBAC) using Clerk.

Vercel AI SDK Testing Patterns

Provides robust testing templates and mock provider implementations for Vercel AI SDK applications to ensure reliable AI integration.

Clerk Auth Components

Simplifies the integration and customization of Clerk authentication interfaces using pre-built templates and advanced theming patterns.

AI Code Reviewer

Performs systematic code audits to identify security vulnerabilities, logic bugs, and maintainability issues with actionable feedback.

Story-Driven Acceptance Testing

Guides Product Owners through manual verification steps to validate features before they are merged into production.

LangGraph SITNOVA Security Automation

Implements stateful AI operator flows for automated security gate systems using the LangGraph framework and real-time OCR integrations.

Clerk Session Management

Streamlines Clerk authentication workflows including JWT verification, custom claims configuration, and multi-session management.

Report Bug

Generates and submits professionally formatted GitHub Issues directly from the development environment, complete with reproduction steps, technical analysis, and recommended E2E tests.

Global Validation

Implements comprehensive, multi-layered input validation and sanitization to ensure data integrity and prevent security vulnerabilities across all application entry points.

Global Coding Style

Enforces consistent formatting, naming conventions, and type safety across PHP and TypeScript environments while automating code quality standards.

Frontend Accessibility

Implements inclusive user interfaces using semantic HTML, WCAG-compliant color contrast, and robust keyboard navigation.

Supabase Auth Configuration

Streamlines the setup and configuration of Supabase authentication providers, JWT settings, and secure PKCE authentication flows.

Frontend Quality Assurance

Automates comprehensive UI testing and bug discovery using browser automation to ensure high-quality frontend deployments.

Python Testing

Implements robust Python testing suites using pytest, focusing on isolated test design, mocking external dependencies, and asynchronous execution patterns.

Security Scanning Tools

Conducts comprehensive security audits and vulnerability assessments using industry-standard tools for networks, web apps, and cloud infrastructure.

Clerk Middleware Protection

Implements secure route guards and authorization patterns using Clerk middleware for Next.js applications.

Error Handling Patterns

Implements robust error handling strategies across multiple programming languages to build resilient, fault-tolerant applications.

Testing & Test Writing

Develops strategic, behavior-focused unit and end-to-end tests using Vitest and Playwright to ensure robust application functionality and reliability.