The Agent Skills Directory

[SAFE]: The connection authentication pattern in SKILL.md correctly uses signed cookies and token-based session lookup to verify users before allowing WebSocket connections, which is the standard security practice for Action Cable.\n- [SAFE]: Channel implementation examples in references/channel-patterns.md include mandatory authorization checks (e.g., using EventPolicy) and utilize the reject method to prevent unauthorized subscriptions, ensuring data isolation between users.\n- [SAFE]: Broadcasting patterns correctly scope data to specific users (stream_for current_user) or specific resources to prevent cross-tenant data leakage.\n- [SAFE]: No external downloads, remote code execution patterns, or hardcoded credentials were found. Configuration examples correctly use environment variables for sensitive settings like Redis URLs.

action-cable-patterns