Apply security and code quality standards
best-practicesskillsetup L1★2,191
addyosmani/web-quality-skills ↗What it does
Apply modern web security and quality standards
Best for
Hardening sites against XSS, clickjacking, MIME-sniffing; enforcing HTTPS, CSP, SRI, Trusted Types, and best-practice header configs.
Inputs
- · HTML/CSS/JS code or site config
Outputs
- · Security header directives
- · Code examples (vulnerable → hardened)
- · Header config blocks (copy-paste ready)
Preconditions
Web infrastructure or code accessible; CSP can be rolled out via report-only mode first
Failure modes
- · CSP can block legitimate third-party resources → requires testing
- · SRI requires CDN CORS headers