git-best-practices
Provides best practices for Git workflow management, focusing on .gitignore setup and effective commit strategies.
Install this skill
or
72/100
Security score
The git-best-practices skill was audited on Feb 16, 2026 and we found 12 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
low line 99
Access to .env file
SourceSKILL.md
| 99 | .env |
low line 100
Access to .env file
SourceSKILL.md
| 100 | .env.local |
low line 101
Access to .env file
SourceSKILL.md
| 101 | .env.*.local |
low line 102
Access to .env file
SourceSKILL.md
| 102 | .env.development |
low line 103
Access to .env file
SourceSKILL.md
| 103 | .env.production |
low line 104
Access to .env file
SourceSKILL.md
| 104 | .env.test |
low line 105
Access to .env file
SourceSKILL.md
| 105 | *.env |
medium line 160
Access to .env file
SourceSKILL.md
| 160 | - Ensure no sensitive files are staged (`.env`, secrets, API keys) |
medium line 185
Access to .env file
SourceSKILL.md
| 185 | - **Sensitive files**: `.env`, `.env.local`, any file containing secrets, API keys, passwords |
medium line 234
Access to .env file
SourceSKILL.md
| 234 | - [ ] No sensitive files (`.env`, secrets) are staged |
medium line 252
Access to .env file
SourceSKILL.md
| 252 | - Double-check for `.env` files, API keys, passwords |
low line 401
External URL reference
SourceSKILL.md
| 401 | agent-browser open http://localhost:3000 |
Scanned on Feb 16, 2026
View Security DashboardInstall this skill with one command
/learn @pmarashian/git-best-practicesRate this skill
Categorydevelopment
UpdatedMarch 29, 2026
github-copilotcodexchatgptclaude-codecursoropencoderoo-codeampgoosetraewindsurfclinevibemanusantigravitygemini-cligitcross-platformfrontend-developerbackend-developerfullstack-developerdevops-sretechnical-writerdevelopmentcontent media
pmarashian/cursor-agent-skills