Skip to main content

keystonejs

Facilitates the creation of content APIs using KeystoneJS, enabling automatic CRUD operations and TypeScript support.

Install this skill

or
75/100

Security score

The keystonejs skill was audited on Feb 12, 2026 and we found 13 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 277

Template literal with variable interpolation in command context

SourceSKILL.md
277console.log(`New post created: ${item.title}`);
medium line 494

Template literal with variable interpolation in command context

SourceSKILL.md
494generateUrl: (path) => `/files${path}`,
medium line 560

Template literal with variable interpolation in command context

SourceSKILL.md
560const response = await fetch(`${KEYSTONE_URL}/api/graphql`, {
low line 34

Access to .env file

SourceSKILL.md
34url: process.env.DATABASE_URL!,
low line 477

Access to .env file

SourceSKILL.md
477secret: process.env.SESSION_SECRET!,
low line 501

Access to .env file

SourceSKILL.md
501bucketName: process.env.S3_BUCKET!,
low line 502

Access to .env file

SourceSKILL.md
502region: process.env.S3_REGION!,
low line 503

Access to .env file

SourceSKILL.md
503accessKeyId: process.env.S3_ACCESS_KEY!,
low line 504

Access to .env file

SourceSKILL.md
504secretAccessKey: process.env.S3_SECRET_KEY!,
low line 557

Access to .env file

SourceSKILL.md
557const KEYSTONE_URL = process.env.KEYSTONE_URL || 'http://localhost:3000';
low line 19

External URL reference

SourceSKILL.md
19- Admin UI: `http://localhost:3000`
low line 20

External URL reference

SourceSKILL.md
20- GraphQL Playground: `http://localhost:3000/api/graphql`
low line 557

External URL reference

SourceSKILL.md
557const KEYSTONE_URL = process.env.KEYSTONE_URL || 'http://localhost:3000';
Scanned on Feb 12, 2026
View Security Dashboard
Installation guide →
GitHub Stars 106
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawapibackendbackend-developerproduct-managerdata-engineerpostgresqlmysqlsqlitedevelopmentproduct
majiayu000/claude-skill-registry