security-practices

star 52

Security practices including secrets management, input validation, SSRF prevention, and production hardening. Use for security-sensitive code.

eser By eser schedule Updated 12/22/2025
play_arrow Run Skill in Manus View GitHub

name: security-practices description: Security practices including secrets management, input validation, SSRF prevention, and production hardening. Use for security-sensitive code.

security-practices

Quick Start

  1. All secrets in environment variables (never in config files)
  2. Validate inputs at system boundaries
  3. Sanitize error responses (no stack traces in production)
  4. Use HTTPS for all external connections

Key Principles

  • Environment variables for all secrets
  • SSRF prevention (block internal IP ranges)
  • Development vs Production mode separation
  • Rigorous input validation

References

See rules.md for complete conventions.

Install via CLI
npx skills add https://github.com/eser/rules --skill security-practices
Repository Details
star Stars 52
call_split Forks 0
navigation Branch main
article Path SKILL.md
More from Creator
eser
eser Explore all skills →