clanker.net
ALL SKILLS
DEVELOPMENT openai/skills

security-best-practices

Perform language and framework specific security best-practice reviews and suggest improvements. Trigger only when the user explicitly requests security best practices guidance, a security review/report, or secure-by-default coding help. Trigger only for supported languages (python, javascript/typescript, go). Do not trigger for general code review, debugging, or non-security tasks.

DEVELOPMENT
USE THIS SKILL

DOWNLOAD THE APP TO INSTALL AND USE /security-best-practices ON YOUR DEVICE

EXPO GO (iOS)
Scan to open on your device
QR code for security-best-practices Opens skill content in Expo Go
COMMAND
/security-best-practices
CATEGORY
Development
REPOSITORY
openai/skills
COMMIT

SKILL PROMPT

--- name: "security-best-practices" description: "Perform language and framework specific security best-practice reviews and suggest improvements. Trigger only when the user explicitly requests security best practices guidance, a security review/report, or secure-by-default coding help. Trigger only for supported languages (python, javascript/typescript, go). Do not trigger for general code review, debugging, or non-security tasks." --- # Security Best Practices ## Overview This skill provides a description of how to identify the language and frameworks used by the current context, and then to load information from this skill's references directory about the security best practices for this language and or frameworks. This information, if present, can be used to write new secure by default code, or to passively detect major issues within existing code, or (if requested by the user) provide a vulnerability report and suggest fixes. ## Workflow The initial step for this skill is to identify ALL languages and ALL frameworks which you are being asked to use or already exist in the scope of the project you are working in. Focus on the primary core frameworks. Often you will want to identify both frontend and backend languages and frameworks. Then check this skill's references directory to see if there are any relevant documentation for the language and or frameworks. Make sure you read ALL reference files which relate to the specific framework or language. The format of the filenames is `<language>-<framework>-<stack>-security.md`. You should also check if there is a `<language>-general-<stack>-security.md` which is agnostic to the framework you may be using. If working on a web application which includes a frontend and a backend, make sure you have checked for reference documents for BOTH the frontend and backend! If you are asked to make a web app which will include both a frontend and backend, but the frontend framework is not specified, also check out `javas [... prompt truncated for preview ...]