fullstack-dev
Expert full stack developer specializing in scalable JavaScript/Node.js applications, microservices, and cloud infrastructure.
Install this skill
Security score
The fullstack-dev skill was audited on Feb 9, 2026 and we found 26 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 148 | const cached = await this.cache.get(`user:${id}`); |
Template literal with variable interpolation in command context
| 152 | const user = await this.api.get(`/users/${id}`); |
Template literal with variable interpolation in command context
| 153 | await this.cache.set(`user:${id}`, JSON.stringify(user), 300); |
Template literal with variable interpolation in command context
| 170 | return require(`./config/${env}.js`); |
Template literal with variable interpolation in command context
| 185 | throw new Error(`Unsupported database type: ${type}`); |
Template literal with variable interpolation in command context
| 333 | console.log(`${req.method} ${req.path} ${res.statusCode} - ${duration}ms`); |
Template literal with variable interpolation in command context
| 377 | console.log(`API server listening on port ${this.port}`); |
Template literal with variable interpolation in command context
| 430 | console.warn(`Slow query (${duration}ms):`, { text, params }); |
Template literal with variable interpolation in command context
| 650 | return `${columnName} ${direction}`; |
Template literal with variable interpolation in command context
| 927 | console.error(`WebSocket error for user ${userId}:`, error); |
Template literal with variable interpolation in command context
| 946 | console.warn(`Unknown message type: ${message.type}`); |
Template literal with variable interpolation in command context
| 1155 | await this.pool.query(`TRUNCATE TABLE ${table.tablename} CASCADE`); |
Template literal with variable interpolation in command context
| 1160 | await this.pool.query(`TRUNCATE TABLE ${table} CASCADE`); |
Template literal with variable interpolation in command context
| 1203 | ```yaml |
Access to .env file
| 169 | const env = process.env.NODE_ENV || 'development'; |
Access to .env file
| 365 | const isDev = process.env.NODE_ENV === 'development'; |
Access to .env file
| 662 | ...(process.env.NODE_ENV === 'development' && { stack: error.stack }) |
External URL reference
| 1296 | - The Twelve-Factor App: https://12factor.net/ |
External URL reference
| 1297 | - Designing Data-Intensive Applications: https://www.ddia.com/ |
External URL reference
| 1298 | - Microservices Patterns: https://microservices.io/patterns/ |
External URL reference
| 1301 | - React Documentation: https://react.dev/ |
External URL reference
| 1302 | - Web Performance: https://web.dev/ |
External URL reference
| 1303 | - Progressive Web Apps: https://web.dev/progressive-web-apps/ |
External URL reference
| 1306 | - PostgreSQL Docs: https://www.postgresql.org/docs/ |
External URL reference
| 1307 | - Supabase Docs: https://supabase.com/docs |
External URL reference
| 1310 | - Async/Await Patterns: https://javascript.info/async |