A solid security checklist that covers the common pitfalls: hardcoded secrets, SQL injection, XSS, and auth token mishandling. It gives you clear before/after code examples for things like parameterized queries, input validation with Zod, and proper cookie settings. The Supabase RLS examples are helpful if you're in that ecosystem. The file upload validation section alone could save you from several bad bugs. It's comprehensive without being overwhelming, though some sections cut off abruptly. Best used as a reference when you're implementing anything that touches user input, authentication, or external APIs. The checklists are genuinely useful for code review.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill security-review