#Security
19 entries
Prompt to Add Stripe Checkout to a Next.js App
AI agent prompt to add Stripe Checkout with webhook handling, customer portal, and subscription status to a Next.js App Router project.
Prompt to Build a Cloudflare Worker API Proxy
Copy-paste AI prompt to build a Cloudflare Worker that proxies and rate-limits external API calls, adds auth headers, and caches responses.
AI Coding Rules for Auth and Security
AGENTS.md rules for authentication and security that prevent agents from rolling custom crypto, leaking secrets, or bypassing authorization checks.
AI Coding Rules for PostgreSQL Apps
AGENTS.md rules for PostgreSQL-backed apps covering query safety, migration discipline, indexing conventions, and preventing agents from writing N+1 queries.
AI Coding Rules for TypeScript Strict Projects
AGENTS.md rules for TypeScript strict-mode projects that eliminate any types, enforce narrowing patterns, and prevent agents from compiling-but-wrong code.
Claude Code Rules for Prisma Projects
Claude Code rules for Prisma ORM projects covering migration safety, query patterns, relation loading, and preventing agents from corrupting the schema.
Checklist for Reviewing AI-Generated API Routes
A human review checklist for REST and RPC API routes written by AI coding agents — authentication, input validation, rate limiting, and error handling.
Checklist for Reviewing AI-Generated Auth Code
A human review checklist for authentication code written by AI coding agents — sessions, JWTs, OAuth flows, and authorization logic for web apps.
Checklist for Reviewing AI-Generated Cloudflare Workers
A human review checklist for Cloudflare Workers code written by AI coding agents — runtime limits, KV, D1, bindings, and security at the edge.
Checklist for Reviewing AI-Generated GitHub Actions
A human review checklist for GitHub Actions workflows written by AI coding agents — secret exposure, supply chain attacks, permissions, and deployment safety.
Checklist for Reviewing AI-Generated Next.js Code
A human review checklist for Next.js code written by AI coding agents — App Router, Server Components, data fetching, and deployment correctness.
Checklist for Reviewing AI-Generated Prisma Migrations
A human review checklist for Prisma schema changes and migrations written by AI coding agents — data loss, locking, and irreversible operations.
Checklist for Reviewing AI-Generated SQL Queries
A human review checklist for SQL written by AI coding agents — correctness, injection, performance, and migrations.
Checklist for Reviewing AI-Generated Stripe Code
A human review checklist for Stripe integration code written by AI coding agents — webhook security, idempotency, race conditions, and payment flows.
How to Fix AI Breaking the Cloudflare Workers Runtime
AI agents import Node.js built-ins like fs, crypto, and path into Cloudflare Workers, causing runtime errors because the Workers runtime is not Node.js.
How to Fix AI Forgetting Environment Variable Validation
AI agents read process.env values directly without validation, causing silent undefined bugs and missing startup errors when env vars are absent.
How to Fix AI Coding Agents Inventing Fake npm Packages
Why AI agents hallucinate npm packages that don't exist, how to spot it, and how to stop it.
How to Fix AI Putting Server Code in Client Components
AI agents leak database queries, secret env vars, and Node.js APIs into 'use client' components, exposing server-only logic to the browser bundle.
How to Fix AI Writing Insecure SQL
AI agents build SQL queries with string interpolation instead of parameterized statements, introducing SQL injection vulnerabilities into production database code.