Security & Testing Claude 스킬

Frappe Test Suite Creator

Automates the generation of comprehensive pytest suites, fixtures, and data factories for Frappe Framework v15 applications.

Django Testing Pro

Implements high-performance Django testing suites using pytest and factory_boy for robust, isolated code verification.

Python Testing Patterns

Implements comprehensive Python testing strategies using pytest, advanced fixtures, and robust mocking techniques.

Aura Frog: Systematic Debugging

Enforces a rigorous four-phase root cause analysis workflow to identify, reproduce, and permanently fix software defects.

Spring Boot Testing & Migration

Streamlines Spring Boot 4 testing by providing optimized patterns for slice tests, Testcontainers, and mandatory Mockito migrations.

Plugin Security Scanner

Scans Claude Code plugins and skills to detect malicious code, deceptive instructions, and unauthorized credential access.

Claude Plugin Security Scanner

Scans Claude Code plugins and skills for malicious code or deceptive instructions before installation or execution.

Overnight Development Automation

Automates autonomous software development cycles using Git hooks to strictly enforce test-driven development (TDD).

CSRF Protection Validator

Validates web application endpoints for Cross-Site Request Forgery (CSRF) vulnerabilities and security gaps.

Security Code Review Agent

Conducts comprehensive security audits and vulnerability assessments to identify risks like SQL injection, XSS, and insecure dependencies.

API Fuzz Tester

Performs automated fuzz testing on REST APIs to identify security vulnerabilities, input validation failures, and unexpected behaviors.

Data Privacy Scanner

Scans codebases and configuration files to identify PII leaks, compliance risks, and potential data privacy vulnerabilities.

SQL Injection Security Detector

Scans application source code to identify, analyze, and remediate SQL injection vulnerabilities in database queries.

Reviewing Silent Failures

Identifies and mitigates silent failures, swallowed errors, and unhandled exceptions in frontend codebases.

Silent Failure Reviewer

Audits frontend codebases to detect and remediate swallowed exceptions and silent error handling patterns.

Systematic Debugging

Eliminates trial-and-error debugging by enforcing a rigorous, root-cause-first methodology for all technical issues.

Testing Anti-Patterns & Best Practices

Eliminates brittle test suites and improves code quality by identifying and correcting common mocking and TDD anti-patterns.

Senior QA Engineering Toolkit

Implements comprehensive quality assurance strategies, automated test suites, and coverage analysis for modern web applications.

Web Application Testing

Automates local web application testing and UI verification using Playwright for robust frontend debugging and end-to-end testing.

SOC2 Audit & Compliance Helper

Automates evidence gathering and gap analysis to streamline SOC2 audit preparation and security compliance workflows.

API Contract Validator

Validates API integrity and consumer compatibility using Pact and OpenAPI specifications to prevent breaking changes.

Test Doubles Generator

Automates the creation of mocks, stubs, spies, and fakes to accelerate unit testing workflows across multiple frameworks.

Infrastructure Compliance Checker

Audits infrastructure configurations against industry standards like SOC2, HIPAA, and PCI-DSS to identify security risks and compliance gaps.

Security Audit Reporter

Generates comprehensive security audit reports and vulnerability assessments to improve system security posture.

HIPAA Compliance Checker

Audits software projects and infrastructure configurations to identify potential HIPAA compliance vulnerabilities and healthcare data security gaps.

FDA Regulatory Consultant Specialist

Navigates FDA regulatory pathways and ensures QSR and HIPAA compliance for medical device development.

CORS Policy Validator

Audits and validates Cross-Origin Resource Sharing (CORS) configurations to identify security vulnerabilities and misconfigurations.

PCI DSS Compliance Validator

Automates PCI DSS compliance audits by scanning codebases and infrastructure configurations for security vulnerabilities and regulatory deviations.

Security Misconfiguration Finder

Identifies and remediates security vulnerabilities in infrastructure-as-code, application configurations, and system settings.

Security Audit Reporter

Generates comprehensive security audit reports and compliance assessments for applications and systems.