Skip to main content

typescript-rules

Provides comprehensive TypeScript development rules for React, focusing on type safety, component design, and state management.

Install this skill

or
69/100

Security score

The typescript-rules skill was audited on Jun 14, 2026 and we found 9 security issues across 4 threat categories, including 1 high-severity. Review the findings below before installing.

Categories Tested

Security Issues

high line 39

Template literal with variable interpolation in command context

SourceSKILL.md
39- **Template Literal Types**: `type EventName = \`on\${Capitalize<string>}\`` - Express string patterns with types
low line 123

Fetch to external URL

SourceSKILL.md
123const response = await fetch('/api/data') // Backend handles API key authentication
medium line 101

Access to .env file

SourceSKILL.md
101- **Use the build tool's env accessor**: read client-side env through the bundler's exposed accessor — Vite via `import.meta.env`, Next.js/CRA via prefixed `process.env`. Raw, unprefixed access is `un
low line 107

Access to .env file

SourceSKILL.md
107// Vite: import.meta.env.VITE_API_URL
low line 108

Access to .env file

SourceSKILL.md
108// Next.js: process.env.NEXT_PUBLIC_API_URL
low line 110

Access to .env file

SourceSKILL.md
110apiUrl: import.meta.env.VITE_API_URL || 'http://localhost:3000', // adjust accessor + prefix to the project's bundler
low line 111

Access to .env file

SourceSKILL.md
111appName: import.meta.env.VITE_APP_NAME || 'My App'
medium line 118

Access to .env file

SourceSKILL.md
118- Exclude `.env` files via `.gitignore`
low line 110

External URL reference

SourceSKILL.md
110apiUrl: import.meta.env.VITE_API_URL || 'http://localhost:3000', // adjust accessor + prefix to the project's bundler
Scanned on Jun 14, 2026
View Security Dashboard
Installation guide →
GitHub Stars 348
Rate this skill
Categorydevelopment
UpdatedJune 15, 2026
frontenddesignreactdocxgitapitestingbackendfrontend-developerproduct-managerux-designerdevelopmentproductdesign
shinpr/claude-code-workflows