The Agent Skills Directory

[SAFE]: The skill serves as a reference guide and template provider for Node.js development. It does not execute any autonomous commands, perform network operations, or access the file system of the environment where it is used.
[SAFE]: Included code examples actively promote security by implementing the helmet middleware to set secure HTTP headers and configuring cors to restrict cross-origin access.
[SAFE]: Database patterns for PostgreSQL use parameterized queries ($1, $2), which is the standard defense against SQL injection. MongoDB patterns utilize Mongoose schemas for structured data validation.
[SAFE]: Sensitive operations like password handling use bcrypt for hashing, and session management is handled through standard jsonwebtoken (JWT) patterns, avoiding home-grown or insecure authentication methods.
[SAFE]: The skill incorporates rate limiting using express-rate-limit and Redis, demonstrating awareness of and protection against denial-of-service (DoS) and brute-force attacks.

nodejs-backend-patterns