express-backend-starter

This skill is a benign, opinionated scaffolding and best-practices guide for building Node.js + Express backends. It requests environment variables and database credentials only insofar as necessary to build and run a backend. There are no download-execute chains, no third-party intermediary endpoints, no instructions to forward credentials to unknown services, and no code obfuscation. Main security considerations are implementation risks by downstream users (secret handling, logging, correct CORS/rate-limiting) rather than malicious intent in the skill itself.