security-nextjs

Installation

SKILL.md

Security audit patterns for Next.js applications covering environment variable exposure, Server Actions, middleware auth, API routes, and App Router security.

Environment Variable Exposure

The NEXT_PUBLIC_ Footgun

NEXT_PUBLIC_* → Bundled into client JavaScript → Visible to everyone
No prefix     → Server-only → Safe for secrets

Installs

Repository

jal-co/jalco-opencode

GitHub Stars

First Seen

7 days ago

Security Audits

Gen Agent Trust HubPass

SocketFail

SnykPass

security-nextjs — jal-co/jalco-opencode