tauri

The SKILL.md file is a defensive, security-focused guide for Tauri applications. It provides correct and practical secure patterns (IPC validation, path canonicalization, origin checks, restrictive CSP, minimal capabilities, and signed updater usage). I found no malicious code or obfuscated payloads. The primary risks are operational: copying example updater endpoints or placeholder keys, or misconfiguring envPrefix/capabilities, could enable supply-chain or secret-leak vulnerabilities. With correct replacement of placeholders, proper key management, and standard dependency audits, the guidance is safe and helpful.