The Agent Skills Directory

[SAFE]: The skill implements best practices for secret management, specifically forbidding the storage of credentials in configuration files and recommending environment variables or Spring Cloud Config.\n- [SAFE]: Security implementation examples use standard, secure frameworks (Spring Security 6, JWT, BCrypt) and provide guidance on CORS and CSRF protection.\n- [SAFE]: Command execution is limited to standard development tools (mvnw, gradlew) for the purpose of running tests and health checks, which is essential for the skill's primary function.\n- [SAFE]: Data handling patterns include robust input validation (@Valid, @Validated) and global exception handling that prevents leaking sensitive stack traces to users.

spring-boot-engineer