The Agent Skills Directory

Standard Documentation Skill: The skill is composed entirely of Markdown documentation providing coding best practices for React and Next.js. It does not include executable scripts, binaries, or automated installation processes that could pose a runtime security risk to the agent's environment.
Security-Conscious Guidelines: The skill includes specific rules that enhance application security, such as 'Authenticate Server Actions Like API Routes'. This rule correctly identifies that Server Actions are public endpoints and provides clear instructions on implementing authentication and authorization checks to prevent unauthorized data mutations.
Trusted Resource References: The guidelines recommend well-known and trusted libraries and tools, including SWR, Next.js features, and established utilities like 'lru-cache'. These references originate from the skill's authoring organization or widely recognized open-source contributors, appearing as legitimate architectural recommendations for performance.
Safe Usage of React Patterns: The rule 'Prevent Hydration Mismatch Without Flickering' includes an example using 'dangerouslySetInnerHTML' to inject a synchronous script. This is an established pattern in the React ecosystem for handling client-side state during SSR; the provided script is static, focused solely on theme application, and does not incorporate untrusted or dynamic external input.

vercel-react-best-practices