Skills from sergiodxa/agent-skills

Dangerous skill: an OWASP-oriented security checklist for web apps and APIs. It includes code examples that execute shell commands (`execSync`), read environment secrets (`STRIPE_SECRET_KEY`, `ENCRYPTION_KEY`), and perform network requests (e.g., `fetch` to `https://cdn.example.com/update.zip`).

This skill documents frontend testing best practices that favor E2E tests over unit tests and provides test structure, selectors, and utilities such as `createTestingAccount` and `addAccountBalance`. It explicitly instructs tests to set environment variables via `vi.stubEnv("NODE_ENV", "production")`.

React performance optimization guidelines. Use when writing, reviewing, or refactoring React components to ensure optimal rendering and bundle patterns. Triggers on tasks involving React components, hooks, memoization, or bundle optimization.

Tailwind CSS patterns and conventions for frontend apps. Use when writing component styles, layouts, or working with CSS classes.

This skill documents React Router best practices for loaders, actions, forms, streaming, and route organization. It includes example network calls such as `await fetch("https://example.com/api", { signal: request.signal })` and prefetch/SSE endpoints like `"/api/items/123?_data=routes/api.items.$itemId"` and `"/sse/time"`.

Accessibility (a11y) best practices for React components. Use when creating UI components, forms, interactive elements, or reviewing code for accessibility compliance.