Security & Testing Claude 스킬

Security Headers Analyzer

Analyzes HTTP security headers to identify website vulnerabilities and provides actionable hardening recommendations.

Secret & Credential Scanner

Scans codebases for exposed secrets, API keys, and credentials using pattern matching and entropy analysis to prevent security breaches.

Security Test Scanner

Automates security vulnerability testing for applications and APIs to identify OWASP Top 10 risks and injection flaws.

Test Coverage Analyzer

Analyzes code coverage metrics to identify untested code paths and generate detailed quality reports.

Data Privacy Scanner

Scans codebases and configuration files to identify sensitive data exposure, PII leaks, and regulatory compliance violations.

Python Dead Code Detection

Identifies and prunes unused Python functions, classes, and variables to maintain clean and efficient codebases.

Property-Based Testing

Automates test case generation and edge-case discovery using fast-check for TypeScript and Hypothesis for Python.

Mutation Testing Expert

Validates test suite effectiveness by introducing deliberate code mutations to identify weak assertions and untested logic paths.

Rust Code Coverage (cargo-llvm-cov)

Generates precise Rust code coverage reports using LLVM-based instrumentation and integrates with CI/CD pipelines.

Playwright Testing

Automates end-to-end web testing across multiple browsers using the Playwright framework for reliable UI and API verification.

Claude Security Settings

Configures granular security permissions, shell operator protections, and project-level access controls for Claude Code.

Chaos Engineering Toolkit

Designs and executes controlled failure experiments to identify system weaknesses and validate architectural resilience.

Security Code Review Agent

Conducts automated security audits and vulnerability assessments to identify risks like SQL injection, XSS, and insecure dependencies within your codebase.

Snapshot Test Manager

Automates the creation and validation of UI component snapshots to prevent visual regressions during development.

Binary Analysis & Reverse Engineering

Analyzes binary files and firmware to extract strings, identify file signatures, and explore raw data using industry-standard tools.

Debugging Strategies

Implements systematic debugging workflows and root cause analysis techniques to identify and resolve complex software defects efficiently.

CodeRabbit Review

Performs automated code reviews via the CodeRabbit CLI to detect bugs, security issues, and performance improvements in local changes.

Bats Shell Testing Patterns

Implements comprehensive unit testing for shell scripts using the Bash Automated Testing System (Bats) framework.

Chaos Engineering Toolkit

Designs and executes controlled failure experiments to identify system weaknesses and validate architectural resilience.

Debugging Methodology

Implements a systematic approach to diagnosing and resolving complex software bugs using advanced system tracing and memory analysis tools.

Python Testing with pytest

Simplifies Python test suite creation and maintenance using pytest, mocking, and comprehensive coverage analysis.

Performance Test Suite

Automates the design, execution, and analysis of performance tests to identify system bottlenecks and optimize application stability.

Core Banking & Wealth Management

Integrates hardware wallets with post-quantum cryptography and AI-driven risk management for secure digital asset protection.

Mobile App Testing Automation

Automates comprehensive end-to-end testing for iOS and Android applications using industry-standard frameworks like Appium, Detox, and XCUITest.

Secret Scanner

Identifies and remediates exposed secrets, API keys, and sensitive credentials within your codebase to prevent security breaches.

Visual Regression Tester

Automates visual consistency checks by capturing and comparing screenshots against baselines to detect unintended UI regressions.

Security Audit Reporter

Generates comprehensive security audit reports identifying vulnerabilities, compliance gaps, and actionable remediation steps.

Authentication Security Validator

Validates authentication implementations against security best practices to ensure robust user protection and industry compliance.

Firebase Code Validation

Audits Firebase projects for security vulnerabilities, architectural consistency, and adherence to production-ready best practices.

Plugin Auditor

Audits Claude Code plugins for security vulnerabilities, repository compliance, and architectural best practices.