Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From openevidence-pack
Provides OpenEvidence security basics including API key .env setup, checklists for rotation, auditing, and per-environment keys. Useful for secure SaaS API integrations.
How this skill is triggered — by the user, by Claude, or both
Slash command
/openevidence-pack:openevidence-security-basicsThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
```bash
# .env (never commit)
OPENEVIDENCE_API_KEY=your-key
# .gitignore: .env
See openevidence-prod-checklist.
npx claudepluginhub jeremylongshore/claude-code-plugins-plus-skills --plugin openevidence-packAudits SaaS apps for vulnerabilities, implements authentication best practices with Supabase/Clerk/NextAuth, protects data via OWASP Top 10 checklists.
Discovers, classifies, protects, and governs API keys, tokens, secrets across code, git history, containers, CI/CD, VPS, and providers like OpenAI, AWS, GCP, Azure, Stripe. Enforces rotation, least privilege, and governance.
Provides production checklist for OpenEvidence apps: pre-launch steps, TypeScript health check example, monitoring, alerting, and rollback procedures. Useful before SaaS/healthcare deployments.