The Agent Skills Directory

[Security Standards] (SAFE): The skill contains five dedicated security rule files ('rules/security-*') that provide correct patterns for input validation, authentication, authorization, CSRF protection, and SQL injection prevention. These instructions guide the AI to generate secure code by default.\n- [Trusted Dependencies] (SAFE): Remote resources such as the official Shopware Extension SDK (via unpkg) and industry-standard GitHub Actions (actions/checkout, codecov/codecov-action) are used according to best practices. All Docker images (Dockware, MySQL, Elasticsearch) are standard development environment components.\n- [Data Handling] (SAFE): The skill strongly enforces the use of Shopware's Data Abstraction Layer (DAL) over raw SQL, which is a key defense against database-level attacks.\n- [Credential Management] (SAFE): Example configurations use placeholders like '${DB_PASS}' or 'secret123' in the context of anti-patterns, ensuring the agent does not adopt unsafe credential handling habits.

shopware6-best-practices