ask-security-sentinel

<critical_constraints> ✅ MUST run before git commit or deploy ✅ MUST halt and warn if secrets found ✅ MUST enforce parameterized queries </critical_constraints>

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "ask-security-sentinel" with this command: npx skills add navanithans/agent-skill-kit/navanithans-agent-skill-kit-ask-security-sentinel

<critical_constraints> ✅ MUST run before git commit or deploy ✅ MUST halt and warn if secrets found ✅ MUST enforce parameterized queries </critical_constraints>

<secret_patterns>

  • sk_live_... (Stripe)

  • ghp_... (GitHub)

  • ey... (JWT tokens) → If found: HALT, warn user, move to .env </secret_patterns>

<vulnerability_checks>

SQL Injection

❌ Bad: DB::select("SELECT * FROM users WHERE id = $id")

✅ Good: DB::select("...", [$id])

XSS

  • Check for {!! $variable !!} in Blade

  • Ensure user explicitly confirmed safe HTML </vulnerability_checks>

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

ask-owasp-security-review

No summary provided by upstream source.

Repository SourceNeeds Review
-9
navanithans
Automation

ask-shadcn-architect

No summary provided by upstream source.

Repository SourceNeeds Review
-12
navanithans
Automation

ask-skill-creator

No summary provided by upstream source.

Repository SourceNeeds Review
-11
navanithans