Security & Testing Claude 스킬

Defense-in-Depth Validation

Implements multi-layered data validation across system boundaries to make bugs structurally impossible and ensure data integrity.

Supabase Email Authentication

Automates the implementation of production-ready email and password authentication for Next.js applications using Supabase.

Testing Foundations

Implements industry-standard testing patterns and best practices to ensure high-quality code reliability and maintainable test suites.

Defense-in-Depth Validation

Implements multi-layered data validation patterns to prevent bugs and ensure structural code integrity at every execution level.

LimaCharlie Infrastructure as Code

Manages LimaCharlie security configurations as version-controlled code through automated exports, Git synchronization, and multi-organization deployment workflows.

LimaCharlie Expert

Provides comprehensive architectural guidance and routing for LimaCharlie SecOps tasks, including endpoint detection, cloud security monitoring, and automated response orchestration.

LimaCharlie Incident Responder

Executes comprehensive security incident response workflows including threat investigation, containment, and forensic evidence collection using LimaCharlie's capabilities.

Infrastructure Security Hardening

Hardens cloud infrastructure and Kubernetes environments using CIS benchmarks, secure configuration patterns, and automated vulnerability scanning.

Python Testing Patterns

Implement robust testing strategies using pytest, mocking, and fixtures to ensure high-quality Python applications.

Solidity Security & Best Practices

Master smart contract security to prevent vulnerabilities and implement industry-standard Solidity development patterns.

Artifact Collector

Collects and manages forensic evidence from endpoints, including memory dumps, system logs, and network traffic, using the LimaCharlie security platform.

Config Hive Manager

Manages centralized configuration storage in LimaCharlie, including secrets, detection rules, YARA rules, and lookup tables.

Secrets Management for CI/CD

Implements secure credential handling and secret rotation across major cloud providers and CI/CD platforms to prevent sensitive data leaks.

ShellCheck Configuration & Static Analysis

Enhances shell script quality and reliability by implementing standardized ShellCheck configurations and automated linting workflows.

PCI Compliance Manager

Implements rigorous PCI DSS standards to secure payment processing workflows and protect sensitive cardholder data.

Advanced Debugging Strategies

Implements systematic debugging techniques and profiling tools to identify and resolve complex software bugs across any technology stack.

Temporal Python Testing

Simplifies testing Temporal workflows and activities in Python using time-skipping, mocking, and determinism validation.

E2E Testing Patterns

Implements robust end-to-end testing suites using Playwright and Cypress best practices to ensure application reliability.

Kubernetes Security Policies

Implements production-grade Kubernetes security using NetworkPolicies, Pod Security Standards, and RBAC configurations.

Advanced Debugging Strategies

Applies systematic diagnostic methodologies and profiling tools to identify and resolve complex software defects across any technology stack.

Code Review Excellence

Transforms code reviews into a collaborative knowledge-sharing process that improves code quality and team morale through structured feedback.

Web3 Smart Contract Testing

Automates and optimizes smart contract testing using Hardhat and Foundry to ensure security and gas efficiency in blockchain applications.

JavaScript Testing Patterns

Implements comprehensive testing strategies using Jest and Vitest to ensure reliability in JavaScript and TypeScript applications.

SAST Security Configuration

Configures and optimizes Static Application Security Testing (SAST) tools to automate code vulnerability detection and enforce security standards.

Systematic Development Workflow

Enforces a rigorous test-driven development (TDD) and systematic debugging protocol to ensure production-grade code quality and reliability.

Traceability Matrix Generator

Generates a comprehensive traceability matrix mapping business intents to requirements, code, tests, and runtime metrics.

SecLists Passwords Security Toolkit

Equips Claude Code with curated password wordlists for authorized security auditing, credential testing, and penetration testing research.

SecLists Payloads Collection

Provides a curated set of exploitation payloads for security testing, including anti-virus bypasses and file name exploits.

SecLists Usernames & Enumeration

Provides curated username wordlists and default credentials for authorized security testing and account discovery within Claude Code.

Integration Test Runner

Executes and validates complex end-to-end integration tests, BDD scenarios, and API contracts to ensure system-wide reliability.