The Agent Skills Directory

[SAFE]: The skill serves as a comprehensive reference for file upload implementations, emphasizing security-first principles such as defense-in-depth and defense against spoofing.\n- [SAFE]: Explicitly warns against common security pitfalls, including trusting client-side validation and proxying large files through backend servers, which can lead to DoS or resource exhaustion.\n- [SAFE]: Recommends security best practices such as magic bytes detection (content-based file type verification) to prevent MIME-type spoofing attacks.\n- [SAFE]: Utilizes trusted libraries and APIs, specifically referencing the official AWS SDK for generating presigned URLs to ensure secure, time-limited, and direct-to-storage uploads.\n- [SAFE]: Implements standard memory management practices by requiring the manual cleanup of object URLs with URL.revokeObjectURL() to prevent client-side memory leaks.\n- [SAFE]: Focuses on accessibility (ARIA roles, live regions, and keyboard support) and user experience (real progress tracking via XHR) without introducing any malicious code execution or data exfiltration vectors.

web-files-file-upload-patterns