بنقرة واحدة
secret-handling
Keep secrets out of source control, logs, and generated artifacts
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Keep secrets out of source control, logs, and generated artifacts
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
استنادا إلى تصنيف SOC المهني
Write evidence-based architectural proposals before implementation
Write clear, scannable project documentation
Use short-lived branches and small pull requests
Core conventions and patterns for this codebase
Keep tests, validation scripts, and expectations aligned with behavior changes
Cross-platform path handling and command patterns
| name | secret-handling |
| description | Keep secrets out of source control, logs, and generated artifacts |
| domain | security |
| confidence | high |
| source | template |
Agents and contributors may encounter configuration files, workflow inputs, or environment variables that contain live credentials. Never copy those secrets into committed files, logs, or documentation.
.env.example, .env.sample, or documented configuration schemas<set in environment>Before committing, review changed files for:
✓ Good:
GITHUB_TOKEN=<set in repository secrets>SMTP_PASSWORD=<set in environment>✗ Poor:
.env file when a sample file would answer the question