The Agent Skills Directory

[SAFE]: The skill serves as documentation for an architectural pattern focused on secure authentication using OAuth2 and PKCE for public clients (browser applications).
[SAFE]: Explicit security requirements are provided, including the mandatory use of HTTPS and the configuration of the Looker Embedded Domain Allowlist to prevent unauthorized CORS access.
[SAFE]: Implementation instructions correctly advise using environment variables for configuration and highlight that sensitive cryptography APIs require a secure context (HTTPS).
[EXTERNAL_DOWNLOADS]: The accompanying README reference contains standard development instructions such as git clone and npm install for a sample React project, which are typical for developer-focused documentation.

cors-api