This is a security scanner built for Next.js projects that runs checks based on OWASP guidelines. It looks for the usual suspects: hardcoded secrets, dependency vulnerabilities, and common security issues in TypeScript and JavaScript code. You'd run this before deployments or during code reviews when you want a systematic pass over your codebase. The skill comes from sugarforever's collection of agent tools and covers multiple scan types, though the specifics aren't detailed in the documentation. It's straightforward automated scanning rather than deep manual analysis, so treat it as a first line of defense that catches obvious problems you might have missed.
npx skills add https://github.com/sugarforever/01coder-agent-skills --skill next.js-security-scan