Security & Testing Claude 스킬

HardStop Shell Safety

Protects your system by intercepting and validating AI-generated shell commands and file access before execution.

Cloudflare Tunnel & Access Auth

Authenticates HTTP requests through Cloudflare Zero Trust and Tunnel using Service Token headers.

Software Engineering Auto-Verify

Prompts systematic verification for complex software engineering tasks to ensure code reliability, security, and logical correctness.

Security Audit & RLS Validation

Enforces application safety by validating Row Level Security (RLS) policies, auditing authentication routes, and performing automated vulnerability scanning.

OpenSpec Change Verifier

Validates code implementations against specifications, tasks, and design documents to ensure completeness and correctness before archiving.

OpenSpec Implementation Verifier

Validates that code implementations align with requirements, tasks, and design specifications before finalizing changes.

Python Security Scanner

Performs comprehensive security audits and vulnerability scans for Python web applications and scripts to identify OWASP risks and insecure patterns.

Secrets Detector

Scans source code and Git history to identify and mitigate hardcoded secrets, API keys, and credentials.

Vulnerability Scanner

Scans codebases for security vulnerabilities, identifies CVE patterns, and provides severity-based remediation guidance.

Dependency Auditor

Scans and remediates security vulnerabilities across multiple package managers to secure your project's software supply chain.

Test Coverage Analyzer

Analyzes test coverage reports to identify testing gaps and provides prioritized recommendations for improving software quality.

Docker Image Security Scanner

Identifies and remediates vulnerabilities, outdated packages, and security misconfigurations in Docker images.

AWS Security Group Analyzer

Audits AWS security groups to identify overly permissive rules and improve network security posture.

Test Data Generator

Generates high-quality test fixtures, mock data, and complex test scenarios to streamline unit and integration testing across multiple languages.

Test Fixture Generator

Generates high-fidelity synthetic test data and edge cases for robust ETL pipeline and database testing.

Accessibility Checker

Validates web content for WCAG compliance and ensures inclusive user experiences through automated audits and best practice implementation.

ETL Testing Patterns

Provides Pytest templates and best practices for validating ETL pipelines through unit, integration, and data quality tests.

Binary Analysis

Analyzes binary files to identify malicious behavior, perform decompilation, and generate detailed threat assessment reports.

SSL/TLS Configuration Helper

Configures secure SSL/TLS certificates and implements web security hardening patterns for Nginx servers.

Human-in-Loop End-User Testing

Executes structured Setup/Action/Assert verification sequences with mandatory human checkpoints to validate real infrastructure behavior.

API Security Checker

Audits backend APIs to identify and remediate OWASP Top 10 vulnerabilities, authentication flaws, and authorization issues.

LLM Evaluation & Testing

Implements systematic evaluation patterns and metrics to measure LLM performance, validate prompt quality, and detect hallucinations.

Rails Testing with Minitest

Implements rigorous Test-Driven Development (TDD) using Minitest and Rails-native patterns to ensure high-quality, maintainable codebases.

Scientific Python Testing

Implements robust testing suites for scientific Python projects using pytest and industry-standard numerical validation patterns.

Fix Validation Protocol

Enforces a scientific four-step workflow to verify code changes through observed behavior rather than the mere absence of errors.

Zigbee Unified Test Harness (ZUTH)

Streamlines the setup, configuration, and execution of Zigbee Unified Test Harness (ZUTH) for official Zigbee 3.0 certification testing.

Python Test Architecture & Strategy

Designs robust pytest architectures and comprehensive testing strategies for modern Python 3.11+ applications.

Perl Testing Guide

Streamlines Perl software quality assurance using Test::More, advanced mocking techniques, and automated test harnesses.

Perl Script Validator

Validates Perl scripts for syntax accuracy, security vulnerabilities, and adherence to industry best practices.

Bash Linting & Formatting

Ensures Bash script quality and consistency using ShellCheck static analysis and shfmt automated formatting.