Skills

secure-coding-practices

Installation
SKILL.md

Secure Coding Practices

This skill is a per-feature implementation checklist — not a threat model. Apply it when writing new code or reviewing a PR.

1. Input Validation — Zod at Every Boundary

Rule: Every external input (query params, request body, path params) must be validated through a Zod schema before reaching the service layer. Never trust raw req.body.

// ✅ Body validated via @ZodBody() or NestJS Pipes — shape guaranteed before service call
@Post()
create(@Body() dto: CreateShowDto) {  // dto already Zod-validated
  return this.showService.create(dto);
}
Installs
1
Repository
allenlin90/erid…services
GitHub Stars
1
First Seen
Mar 31, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykPass
secure-coding-practices — allenlin90/eridu-services