web-security

Installation

SKILL.md

Web Security

We treat web security as a core requirement, not an afterthought. Assume hostile input and untrusted environments by default.

Core Principles

NEVER trust user input
ALWAYS validate and sanitize data at boundaries
Prefer secure defaults over configurability

XSS & Injection

AVOID dangerouslySetInnerHTML and raw HTML injection
Escape and encode dynamic content properly
Never interpolate untrusted data into HTML, CSS, or JS contexts
Ensure SQL injection protection

Authentication & Authorization

Installs

165

Repository

academind/ai-config

GitHub Stars

4

First Seen

Jan 24, 2026

Security Audits

Gen Agent Trust HubPass

web-security — academind/ai-config