Skip to main content

clerk-local-dev-loop

Facilitates local development setup with Clerk for authentication, enabling efficient testing and hot reload configurations.

Install this skill

or
73/100

Security score

The clerk-local-dev-loop skill was audited on May 12, 2026 and we found 11 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 72

Template literal with variable interpolation in command context

SourceSKILL.md
72console.log(`Created: ${user.emailAddress[0]}`)
medium line 75

Template literal with variable interpolation in command context

SourceSKILL.md
75console.log(`Already exists: ${user.emailAddress[0]}`)
low line 164

Fetch to external URL

SourceSKILL.md
164const res = await fetch('/api/data')
low line 120

Webhook reference - potential data exfiltration

SourceSKILL.md
120"dev:webhook": "ngrok http 3000 --log stdout"
medium line 119

Ngrok tunnel reference

SourceSKILL.md
119"dev:tunnel": "ngrok http 3000",
medium line 120

Ngrok tunnel reference

SourceSKILL.md
120"dev:webhook": "ngrok http 3000 --log stdout"
low line 42

Access to .env file

SourceSKILL.md
42# .env.local — use test keys (pk_test_ / sk_test_)
low line 61

Access to .env file

SourceSKILL.md
61const clerk = createClerkClient({ secretKey: process.env.CLERK_SECRET_KEY! })
low line 205

External URL reference

SourceSKILL.md
205- [Clerk Development Mode](https://clerk.com/docs/deployments/overview)
low line 206

External URL reference

SourceSKILL.md
206- [Clerk Testing Guide](https://clerk.com/docs/testing/overview)
low line 207

External URL reference

SourceSKILL.md
207- [Next.js HTTPS Dev](https://nextjs.org/docs/app/api-reference/cli/next#https-for-local-development)
Scanned on May 12, 2026
View Security Dashboard
Installation guide →
GitHub Stars 2.2K
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
claudeclaude-codecodexfrontenddesignplaywrightreactdocxapitestingdevopsbackendfrontend-developerbackend-developerproduct-managerdevelopmentproduct
jeremylongshore/claude-code-plugins-plus-skills