capacitor-security
Provides a comprehensive security guide for Capacitor apps, helping developers secure their mobile applications and run security audits.
Install this skill
or
56/100
Security score
The capacitor-security skill was audited on Feb 25, 2026 and we found 12 security issues across 3 threat categories, including 2 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
medium line 67
Access to .env file
SourceSKILL.md
| 67 | | SEC002 | High | Exposed .env File | |
low line 177
Access to .env file
SourceSKILL.md
| 177 | webContentsDebuggingEnabled: process.env.NODE_ENV === 'development', |
low line 355
Access to .env file
SourceSKILL.md
| 355 | if (process.env.NODE_ENV === 'development') { |
high line 98
Access to system keychain/keyring
SourceSKILL.md
| 98 | | STO006 | High | Keychain/Keystore Not Used for Credentials | |
high line 225
Access to system keychain/keyring
SourceSKILL.md
| 225 | | IOS002 | Medium | Insecure Keychain Access | |
low line 142
External URL reference
SourceSKILL.md
| 142 | allowNavigation: ['https://api.myapp.com'], |
low line 277
External URL reference
SourceSKILL.md
| 277 | issuer: 'https://auth.myapp.com', |
low line 300
External URL reference
SourceSKILL.md
| 300 | connect-src 'self' https://api.myapp.com; |
low line 481
External URL reference
SourceSKILL.md
| 481 | - Capsec Documentation: https://capacitor-sec.dev |
low line 482
External URL reference
SourceSKILL.md
| 482 | - OWASP Mobile Top 10: https://owasp.org/www-project-mobile-top-10 |
low line 483
External URL reference
SourceSKILL.md
| 483 | - OWASP MASTG: https://mas.owasp.org/MASTG |
low line 484
External URL reference
SourceSKILL.md
| 484 | - Capgo Security Plugins: https://capgo.app |
Scanned on Feb 25, 2026
View Security DashboardInstall this skill with one command
/learn @yeohj0710/capacitor-security