Thanks to visit codestin.com
Credit goes to officialskills.sh

Back to skills

best-practices

communitysecurity

A checklist of modern web development standards covering HTTPS, CSP headers, input sanitization, deprecated API avoidance, and HTML validity.

Setup & Installation

npx skills add https://github.com/addyosmani/web-quality-skills --skill best-practices
or paste the link and ask your coding assistant to install it
https://github.com/addyosmani/web-quality-skills/tree/main/skills/best-practices
View on GitHub

What This Skill Does

A checklist of modern web development standards covering HTTPS, CSP headers, input sanitization, deprecated API avoidance, and HTML validity. Based on Lighthouse best practices audits, it gives concrete before/after code examples for common security and compatibility issues.

Condenses Lighthouse best-practices findings and OWASP guidance into copy-paste fixes, so you skip hunting across MDN, OWASP, and blog posts for each warning.

When to use it

  • Reviewing a site for mixed HTTP content before a production push
  • Writing a Content Security Policy with nonces for inline scripts
  • Replacing document.write and synchronous XHR in legacy code
  • Adding passive touchstart listeners to fix scroll jank
  • Running npm audit and patching flagged dependencies