websocket-engineer
Facilitates real-time communication systems using WebSockets or Socket.IO, enabling bidirectional messaging and scalable architecture.
Install this skill
or
87/100
Security score
The websocket-engineer skill was audited on Mar 7, 2026 and we found 5 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 77
Template literal with variable interpolation in command context
SourceSKILL.md
| 77 | console.log(`connected: ${userId} (${socket.id})`); |
medium line 93
Template literal with variable interpolation in command context
SourceSKILL.md
| 93 | console.log(`disconnected: ${userId}`); |
low line 52
Access to .env file
SourceSKILL.md
| 52 | cors: { origin: process.env.ALLOWED_ORIGIN, credentials: true }, |
low line 62
Access to .env file
SourceSKILL.md
| 62 | socket.data.user = jwt.verify(token, process.env.JWT_SECRET); |
low line 70
Access to .env file
SourceSKILL.md
| 70 | const pubClient = createClient({ url: process.env.REDIS_URL }); |
Scanned on Mar 7, 2026
View Security DashboardInstall this skill with one command
/learn @jeffallan/websocket-engineerGitHub Stars 5.5K
Rate this skill
Categorydevelopment
UpdatedMarch 29, 2026
openclawclaude-codecursorwindsurfclineroo-codeampcodexgoosetraeopencodevibemanusantigravitygemini-clibackendapicross-platformbackend-developerdevops-sredata-engineerproduct-managertechnical-pmredisdevelopmentproduct
Jeffallan/claude-skills