Skip to main content

deploy-vercel

Offers detailed guidelines for deploying Next.js applications on Vercel, focusing on best practices and serverless architecture.

Install this skill

or
53/100

Security score

The deploy-vercel skill was audited on Feb 9, 2026 and we found 31 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 120

Template literal with variable interpolation in command context

SourceSKILL.md
120```bash
medium line 422

Template literal with variable interpolation in command context

SourceSKILL.md
422if (authHeader !== `Bearer ${process.env.CRON_SECRET}`) {
medium line 540

Template literal with variable interpolation in command context

SourceSKILL.md
540const key = `ratelimit:${ip}`
low line 143

Webhook reference - potential data exfiltration

SourceSKILL.md
143STRIPE_WEBHOOK_SECRET=whsec_...
medium line 17

Access to .env file

SourceSKILL.md
17- [ ] `.gitignore` includes `.env`, `.vercel`, `node_modules`
low line 115

Access to .env file

SourceSKILL.md
115vercel env pull .env.local
low line 331

Access to .env file

SourceSKILL.md
331connectionString: process.env.POSTGRES_URL,
low line 352

Access to .env file

SourceSKILL.md
352if (process.env.NODE_ENV !== 'production') globalForPrisma.prisma = prisma
low line 383

Access to .env file

SourceSKILL.md
383process.env.NEXT_PUBLIC_SUPABASE_URL!,
low line 384

Access to .env file

SourceSKILL.md
384process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!
low line 422

Access to .env file

SourceSKILL.md
422if (authHeader !== `Bearer ${process.env.CRON_SECRET}`) {
low line 574

Access to .env file

SourceSKILL.md
574token: process.env.BLOB_READ_WRITE_TOKEN,
low line 643

Access to .env file

SourceSKILL.md
643dsn: process.env.NEXT_PUBLIC_SENTRY_DSN,
low line 644

Access to .env file

SourceSKILL.md
644environment: process.env.VERCEL_ENV,
low line 739

Access to .env file

SourceSKILL.md
739enabled: process.env.ANALYZE === 'true',
low line 784

Access to .env file

SourceSKILL.md
784apiUrl: process.env.VERCEL_ENV === 'production'
low line 786

Access to .env file

SourceSKILL.md
786: process.env.VERCEL_ENV === 'preview'
low line 35

External URL reference

SourceSKILL.md
351. Go to [vercel.com](https://vercel.com)
low line 126

External URL reference

SourceSKILL.md
126NEXT_PUBLIC_SITE_URL=https://yourdomain.com
low line 127

External URL reference

SourceSKILL.md
127NEXTAUTH_URL=https://yourdomain.com
low line 137

External URL reference

SourceSKILL.md
137NEXT_PUBLIC_SUPABASE_URL=https://xxx.supabase.co
low line 151

External URL reference

SourceSKILL.md
151KV_REST_API_URL=https://...
low line 156

External URL reference

SourceSKILL.md
156EDGE_CONFIG=https://edge-config.vercel.com/...
low line 785

External URL reference

SourceSKILL.md
785? 'https://api.yourdomain.com'
low line 787

External URL reference

SourceSKILL.md
787? 'https://api-staging.yourdomain.com'
low line 788

External URL reference

SourceSKILL.md
788: 'http://localhost:3001',
low line 884

External URL reference

SourceSKILL.md
884- [Vercel Documentation](https://vercel.com/docs)
low line 885

External URL reference

SourceSKILL.md
885- [Next.js Documentation](https://nextjs.org/docs)
low line 886

External URL reference

SourceSKILL.md
886- [Vercel CLI Reference](https://vercel.com/docs/cli)
low line 887

External URL reference

SourceSKILL.md
887- [Edge Functions](https://vercel.com/docs/functions/edge-functions)
low line 888

External URL reference

SourceSKILL.md
888- [Serverless Functions](https://vercel.com/docs/functions/serverless-functions)
Scanned on Feb 9, 2026
View Security Dashboard
Installation guide →
GitHub Stars 106
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
frontendbackenddevopsfrontend-developerbackend-developerdevops-sreproduct-managergrowth-pmvercelgithubgitlabbitbucketsupabasestripesendgridopenaidevelopmentproduct
majiayu000/claude-skill-registry