security-nextjs

The skill content coherently matches its stated purpose as a pragmatic audit guide for Next.js security patterns. It focuses on environment variable exposure, server actions, API routes, middleware, and security headers without introducing external dependency downloads or credential collection mechanisms. The footprint is proportionate and harmless for developers performing security reviews, though it leans on manual review and example snippets rather than automated enforcement.