Cloudinary Skill (optional)

Guardrails

• Never commit Cloudinary secrets.
• Keep signed uploads and secret-based operations server-side.

When to use

• Implementing admin media upload, image optimization, transformations, or CDN delivery.

Workflow checklist

1. Confirm dependency/SDK choice and ask before adding dependencies.
2. Decide upload strategy: signed uploads (recommended) vs unsigned presets (careful).
3. Store only what you need in DB (e.g., public_id, resource_type, format, width/height, secure_url).
4. Apply transformations via URLs; keep defaults consistent with the design system.
5. Add basic validation (file type/size) and abuse protection (rate limiting where applicable).