The Agent Skills Directory

[SAFE]: The skill establishes strong security foundations by mandating input validation via Zod and secure password storage using bcrypt for credentials-based authentication.
[SAFE]: It includes defensive implementation patterns for common attack vectors, specifically providing code for rate-limiting and validating redirect origins to prevent open-redirect vulnerabilities.
[SAFE]: The instructions promote the principle of least privilege by recommending that sensitive OAuth tokens remain server-side and only necessary data be exposed to the client.
[SAFE]: It enforces a defense-in-depth security model, instructing developers to perform session and role-based authorization checks at the individual route and server action level, complementing global middleware protection.

api-auth-nextauth