The Agent Skills Directory

[SAFE]: The skill is a legitimate educational resource providing security implementation guides. All code snippets follow industry-standard practices for securing Express.js applications.- [CREDENTIALS_UNSAFE]: The skill includes examples of configuration files (.env) and Kubernetes secrets. However, these use obvious dummy placeholders (e.g., 'sk_test_xxx', 'SG.xxx') and are accompanied by strict instructions never to commit actual secrets to version control.- [EXTERNAL_DOWNLOADS]: The skill references well-known and trusted NPM packages such as helmet, joi, and DOMPurify. No unauthorized or suspicious third-party downloads are initiated.- [PROMPT_INJECTION]: The content does not contain any phrases or patterns designed to bypass AI safety guardrails or hijack the agent's behavior.

security-best-practices