Security & Testing Claude 스킬

Review Sonnet (Fast Code Review)

Performs rapid, automated reviews of development plans and code implementations to identify security risks, logic errors, and testing gaps.

China Compliance Review

Reviews business documents and operational plans for compliance with Chinese laws and regulations.

HIPAA Compliance Checker

Audits healthcare applications for HIPAA compliance by scanning codebases, infrastructure configurations, and documentation for security vulnerabilities.

Code Review Pro

Audits source code for bugs, security vulnerabilities, and performance bottlenecks to ensure production-grade software quality.

Clerk Authentication & Identity Management

Integrates robust user authentication, session management, and JWT token handling using Clerk for secure web applications and blockchain integrations.

SonarQube Integration

Integrates SonarQube code quality and security analysis directly into Claude's workflow for automated issue tracking and remediation.

SonarQube Code Quality & Security

Analyzes code quality and manages SonarQube issues, quality gates, and security hotspots directly within your AI coding workflow.

Verification Before Completion

Enforces a strict evidence-based protocol requiring empirical verification before any task is marked as complete or successful.

Testing Anti-Patterns Guard

Prevents common software testing errors by enforcing best practices for mocking, production code isolation, and test-driven development.

Review Sonnet (Fast Review)

Performs rapid, practical code and plan reviews focusing on security, quality, and test coverage using Claude 3.5 Sonnet.

Review Codex

Performs final, schema-validated code and plan reviews using the Codex CLI to ensure high-quality implementations and architectural integrity.

Systematic Debugging Framework

Applies a rigorous four-phase scientific framework to identify root causes and implement reliable fixes for complex software bugs.

Condition-Based Test Waiting

Eliminates flaky tests by replacing arbitrary timeouts with smart condition polling to ensure reliable and fast async operations.

Root Cause Tracing

Systematically traces bugs backward through the call stack to identify and fix the original trigger rather than just treating symptoms.

Defense-in-Depth Validation

Implements a multi-layered validation strategy to catch bugs at every system boundary and make structural failures impossible.

Claude Skill Path Validator

Verifies that Claude Code skill paths are correctly resolved when installed through git-based marketplaces.

Web Application Testing Toolkit

Automates local web application testing and UI verification using Playwright scripts and built-in server management.

Testing Code & Quality Assurance

Writes comprehensive automated tests across multiple layers to ensure software reliability and functional correctness.

Lark Test Case Generator

Generates structured OPML test cases from Lark Project work items and technical documentation automatically.

Go Channel Sync Simulator

Simulates Go-style channel communication patterns using filesystem-based scripts for testing and demonstration purposes.

Authenticated Route Tester

Tests protected API endpoints using cookie-based JWT authentication and automated test scripts.

Web3 Smart Contract Testing

Automates and optimizes smart contract testing using Hardhat and Foundry frameworks for secure blockchain development.

Supabase Policy Guardrails

Enforces security best practices and code quality rules for Supabase integrations through automated linting and CI/CD guardrails.

BAP Identity Manager

Manage Bitcoin Attestation Protocol (BAP) identities and encrypted .bep backup files with bap-cli and bbackup.

Web3 Smart Contract Testing

Validates Solidity smart contracts through comprehensive Hardhat and Foundry test suites, including mainnet forking and fuzzing.

BAP Identity Management

Manages Bitcoin Attestation Protocol (BAP) identities and encrypted backups using specialized command-line tools.

Web3 Smart Contract Testing

Facilitates comprehensive smart contract testing using Hardhat and Foundry frameworks to ensure security, efficiency, and reliability in blockchain protocols.

Route Tester & Auth Validator

Automates the testing and validation of authenticated API routes using cookie-based JWT authentication and Keycloak integration.

Data Privacy Scanner

Scans codebases for sensitive information leaks and data privacy vulnerabilities to ensure compliance with global protection standards.

RSpec Core Fundamentals

Provides standardized BDD structures and best practices for writing clean, maintainable Ruby test suites using RSpec.