Security & Testing Claude 스킬

Security Review & Hardening

Audits and secures application code by implementing industry-standard security patterns, from input validation to secrets management.

Broken Authentication Security Testing

Identifies and audits authentication and session management vulnerabilities in web applications to prevent unauthorized access.

SQLMap Database Penetration Testing

Automates the detection and exploitation of SQL injection vulnerabilities to perform comprehensive database security assessments.

Jest Unit Testing Patterns

Implements robust unit testing patterns using Jest for JavaScript and Node.js applications.

BayesFlow Testing Suite

Automates the creation and debugging of high-quality tests for BayesFlow extension packages and Keras-based neural simulators.

SQLMap Database Pentesting

Automates SQL injection detection and database exploitation using the industry-standard SQLMap tool for security audits.

E2E Test Runner

Automates the creation, maintenance, and execution of comprehensive end-to-end testing suites including CI/CD integration.

Web3 Smart Contract Testing

Automates and optimizes smart contract testing using Hardhat and Foundry to ensure secure, gas-efficient blockchain deployments.

GDPR Compliance & Data Privacy

Implements GDPR-compliant data handling including consent management, data subject rights, and privacy-by-design patterns.

E2E Testing Patterns

Implements reliable end-to-end testing suites using Playwright and Cypress best practices to ensure application stability and catch regressions.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, mocking, and test-driven development best practices.

Temporal Python Testing

Streamlines the testing of Temporal workflows and activities in Python using pytest, time-skipping, and determinism validation.

Promptfoo LLM Evaluation

Automates LLM output testing and prompt optimization using the Promptfoo framework for systematic benchmarking.

Test Specialist

Implements comprehensive testing strategies and systematic bug analysis for JavaScript and TypeScript applications.

WCAG Accessibility Audit Patterns

Conducts comprehensive WCAG 2.2 accessibility audits and provides actionable remediation strategies for web content.

Anti-Reverse Engineering Techniques

Analyzes and bypasses software protection mechanisms like anti-debugging, obfuscation, and packing for authorized security research.

Binary Analysis Patterns

Analyzes compiled binaries, identifies assembly patterns, and reconstructs program logic across multiple architectures.

Repomix Safe Mixer

Prevents credential leaks by automatically scanning and removing hardcoded secrets before packaging codebases with Repomix.

Quick Test Verifier

Verifies code implementation immediately through automated execution or logic review to ensure functional correctness without formal overhead.

Technical Debt Analyzer

Systematically identifies, analyzes, and documents technical debt in JavaScript and TypeScript codebases to improve long-term maintainability.

TDD Workflow Enforcer

Enforces rigorous test-driven development cycles with mandatory 80% coverage across unit, integration, and E2E tests.

Eval Harness for Claude Code

Implements an eval-driven development framework to define, track, and measure the reliability of AI-generated code.

Verification Loop

Automates a multi-phase quality assurance cycle to ensure code reliability and security before deployment.

TDD Workflow & Test Automation

Enforces rigorous test-driven development practices and high code coverage standards to ensure reliable software delivery.

Eval Harness for Claude Code

Implements a formal Eval-Driven Development (EDD) framework to ensure AI-generated code meets quality standards and avoids regressions.

Chrome Extension Debugging Guide

Provides comprehensive strategies and code patterns for troubleshooting Chrome Extension service workers, content scripts, and communication layers.

QE Contract Testing

Automates consumer-driven contract testing and schema validation for REST, GraphQL, and event-driven APIs to ensure backward compatibility.

Advanced JS Mocking Patterns

Master complex testing scenarios in Jest and Vitest using advanced module mocking, spies, and temporal control techniques.

Pytest Modern Test Patterns

Implements high-quality Python testing suites using modern pytest structures, the AAA pattern, and advanced fixture management.

Security Testing

Hardens software applications by providing comprehensive security auditing, vulnerability scanning, and penetration testing guidance.