Skip to main content

payload

Facilitates development and debugging of Payload CMS projects, enhancing API management and content control.

Install this skill

or
91/100

Security score

The payload skill was audited on Mar 1, 2026 and we found 5 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 259

Webhook reference - potential data exfiltration

SourceSKILL.md
259- `overrideAccess: false` - When operating on behalf of a user (API routes, webhooks)
low line 71

Access to .env file

SourceSKILL.md
71secret: process.env.PAYLOAD_SECRET,
low line 76

Access to .env file

SourceSKILL.md
76url: process.env.DATABASE_URL,
low line 389

External URL reference

SourceSKILL.md
389- llms-full.txt: <https://payloadcms.com/llms-full.txt>
low line 390

External URL reference

SourceSKILL.md
390- Docs: <https://payloadcms.com/docs>
Scanned on Mar 1, 2026
View Security Dashboard
Installation guide →
GitHub Stars 278
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawbackendbackend-developerfullstack-developerproduct-managerdevelopmentproduct
aiskillstore/marketplace