1 String技巧

Provides various JavaScript techniques for string manipulation, number handling, and boolean operations to enhance coding efficiency.

Install this skill

77/100

Security score

The 1 String技巧 skill was audited on Mar 1, 2026 and we found 7 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 28

Template literal with variable interpolation in command context

SourceSKILL.md

28	`${value}`;

medium line 62

Template literal with variable interpolation in command context

SourceSKILL.md

62	const text = `The user is ${user.name} ${user.surname}. Email: ${user.details.email}. Display Name: ${user.details.displayName}. ${user.name} has ${user.details.followers} followers.`

medium line 847

Template literal with variable interpolation in command context

SourceSKILL.md

847	const Func = new Function('name', `console.log("I Love " + ${name})`);

medium line 856

Template literal with variable interpolation in command context

SourceSKILL.md

856	location.href = `https://stackoverflow.com/search?q=[js]+${e.message}`;

low line 874

Fetch to external URL

SourceSKILL.md

874	fetch('/user'),

low line 875

Fetch to external URL

SourceSKILL.md

875	fetch('/comment')

low line 856

External URL reference

SourceSKILL.md

856	location.href = `https://stackoverflow.com/search?q=[js]+${e.message}`;

Scanned on Mar 1, 2026

View Security Dashboard

Installation guide →

GitHub Stars 106

Rate this skill

Categorydevelopment

UpdatedMay 21, 2026

claude-code cursor windsurf cline roo-code amp codex goose trae opencode vibe manus antigravity gemini-cli frontend cross-platform

majiayu000/claude-skill-registry