social-metadata-hardening

Enhances social sharing previews by fixing metadata for rich cards on platforms like Facebook, LinkedIn, and Twitter.

Install this skill

57/100

Security score

The social-metadata-hardening skill was audited on Jun 3, 2026 and we found 19 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 60

Template literal with variable interpolation in command context

SourceSKILL.md

60	const imageUrl = image?.startsWith('http') ? image : `${baseUrl}${image}`;

medium line 61

Template literal with variable interpolation in command context

SourceSKILL.md

61	const pageUrl = `${baseUrl}${path}`;

medium line 122

Template literal with variable interpolation in command context

SourceSKILL.md

122	title: `${post.title} \| My Blog`,

medium line 124

Template literal with variable interpolation in command context

SourceSKILL.md

124	path: `/blog/${params.slug}`,

medium line 160

Curl to non-GitHub URL

SourceSKILL.md

160	curl -sI https://www.yourdomain.com/images/og/home.jpg \| grep -i "content-type\\|content-length\\|status"

medium line 196

Curl to non-GitHub URL

SourceSKILL.md

196	curl -s https://www.yourdomain.com/blog/my-post \| grep -i "og:\\|twitter:"

low line 57

Access to .env file

SourceSKILL.md

57	const baseUrl = process.env.NEXT_PUBLIC_BASE_URL \|\| 'https://www.yourdomain.com';

low line 57

External URL reference

SourceSKILL.md

57	const baseUrl = process.env.NEXT_PUBLIC_BASE_URL \|\| 'https://www.yourdomain.com';

low line 134

External URL reference

SourceSKILL.md

134	metadataBase: new URL('https://www.yourdomain.com'), // REQUIRED for absolute URLs

low line 160

External URL reference

SourceSKILL.md

160	curl -sI https://www.yourdomain.com/images/og/home.jpg \| grep -i "content-type\\|content-length\\|status"

low line 168

External URL reference

SourceSKILL.md

168	- Caches aggressively — use the [Sharing Debugger](https://developers.facebook.com/tools/debug/) to force recrawl

low line 175

External URL reference

SourceSKILL.md

175	- Use the [Card Validator](https://cards-dev.twitter.com/validator) to test

low line 178

External URL reference

SourceSKILL.md

178	- Caches hard — use [Post Inspector](https://www.linkedin.com/post-inspector/) to refresh

low line 196

External URL reference

SourceSKILL.md

196	curl -s https://www.yourdomain.com/blog/my-post \| grep -i "og:\\|twitter:"

low line 204

External URL reference

SourceSKILL.md

204	\| Facebook \| https://developers.facebook.com/tools/debug/ \|

low line 205

External URL reference

SourceSKILL.md

205	\| LinkedIn \| https://www.linkedin.com/post-inspector/ \|

low line 206

External URL reference

SourceSKILL.md

206	\| Twitter/X \| https://cards-dev.twitter.com/validator \|

low line 207

External URL reference

SourceSKILL.md

207	\| General \| https://metatags.io \|

low line 218

External URL reference

SourceSKILL.md

218	- [ ] OG image URLs are absolute (start with `https://`)

Scanned on Jun 3, 2026

View Security Dashboard

Installation guide →

GitHub Stars 39.4K

Rate this skill

Categorymarketing

UpdatedJune 10, 2026

claude claude-code cursor frontend react database testing devops seo-specialist content-marketer social-media-manager marketing

sickn33/antigravity-awesome-skills