TypeScript/JavaScript Security
This file extends common/security.md with TypeScript/JavaScript specific content.
Secret Management
1// NEVER: Hardcoded secrets
2const apiKey = "sk-proj-xxxxx"
3
4// ALWAYS: Environment variables
5const apiKey = process.env.OPENAI_API_KEY
6
7if (!apiKey) {
8 throw new Error('OPENAI_API_KEY not configured')
9}Agent Support
- Use security-reviewer skill for comprehensive security audits