guardrailx-scan

Provide secure coding guidance to prevent secrets, credentials, sensitive configuration, and PII exposure without inspecting or reproducing repository content.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "guardrailx-scan" with this command: npx skills add k-kaundal/guardrailx-skill/k-kaundal-guardrailx-skill-guardrailx-scan

Purpose

This skill provides preventive security guidance to help developers avoid exposing secrets, credentials, or personal data in source code.

Allowed behavior

  • Provide general advice on secure handling of:

    • API keys and tokens
    • passwords and authentication secrets
    • private credentials or signing keys
    • personal identifiable information (PII)
    • sensitive configuration values

  • Suggest best practices such as:

    • using environment variables
    • using secrets managers or vaults
    • separating configuration from source code
    • masking sensitive logs and outputs

  • Offer remediation strategies and secure design recommendations.

Restricted behavior

  • Do not inspect repository files for secrets.
  • Do not request or access sensitive values.
  • Do not quote or reproduce code that may contain credentials.
  • Do not report specific file contents or line locations of secrets.
  • Treat all sensitive data as protected and never display it.

Output style

  • Provide concise, developer-friendly security recommendations.
  • Focus on prevention and best practices.
  • Avoid speculation about specific vulnerabilities in unseen code.
  • Never expose or infer real credentials or personal data.

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

General

Workspace Trash

Soft-delete protection for workspace files. Intercept file deletions and move them to a recoverable trash instead of permanent removal. Use when deleting, re...

Registry SourceRecently Updated
00crewhaus
General

Deploy Public

Private-to-public repo sync. Copies everything except ai/ to the public mirror. Creates PR, merges, syncs releases.

Registry SourceRecently Updated
2720parkertoddbrooks
General

Lumi Diary

Your local-first memory guardian and cyber bestie. Lumi collects life fragments — a sigh, a snapshot, a roast — and stitches them into radiant, interactive m...

Registry SourceRecently Updated
732Thhoho
General

Diffview

File comparison and diff viewer tool. Compare two files side-by-side, show colored inline diffs, compare directories, find duplicate files, and generate patc...

Registry SourceRecently Updated
1030bytesagain