Node.js Best Practices

Trust Score 80/100

Guidelines and decision-making for Node.js architecture, runtime, async patterns, security, validation, and testing to inform framework and system choices.

triggers:node.jsnodejsframework selectionasync patternssecurity checklisttesting strategy

GitHub SKILL.md

What it does

Provides principled guidance for Node.js development decisions: framework selection, runtime choices (Node/Bun/Deno), module systems, architecture layers, async patterns, validation, security checklist, and testing strategies. It focuses on reasoning and choosing the right approach rather than copy-paste code.

When to use it

Use this skill when designing or reviewing Node.js apps, choosing frameworks or runtimes, setting up error-handling, validation, or security posture, and when you need to teach or enforce best-practice decisions across a team.

What's included

Scripts: none bundled
References: none bundled
Instructions: decision trees for framework selection, architecture layering recommendations, security and testing checklists, async pattern guidance, and anti-patterns to avoid.

Compatible agents

Inferred: developer-focused agents and authoring assistants (Claude Code, Cursor, Copilot-style agents) that provide architectural advice and code guidance.

Audit Summary

Node.js best practices skill providing decision-making frameworks for framework selection, async patterns, security, validation, and testing. Pure reference content with no executable scripts. Well-organized with decision trees and comparison tables, but lacks depth in several sections and has no actionable automation component.

Watch Out

Purely informational — no scripts or automation, just reference content
Some sections are superficial (tree diagrams without deep guidance)
No references/ directory or external links for deeper learning

Notes

No security concerns at all — skill is a static reference document with no executable code, network calls, or file operations. Architecture is flat (single monolithic SKILL.md with no supporting structure). Usefulness is moderate: helpful as a decision guide but not unique or actionable.

Information

Repository: antigravity-awesome-skills
Stars: 41,821

Trust Score

Overall80

Security100

Code Quality62

Architecture55

Usefulness65

More from antigravity-awesome-skills

Reverse Engineer

Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for

Angular Migration

Guides developers through migrating AngularJS (1.x) apps to modern Angular (2+), with hybrid ngUpgrade approaches, component/service conversions, DI strategies,

DOCX Official

Workflows and tools to create, edit, analyze, and convert .docx files safely and reproducibly, including tracked-change redlining and raw OOXML access.

Makepad Basics

Guides agents to create, structure, and bootstrap Rust Makepad applications using makepad-widgets (dev branch) with code patterns, macros, and event handling.

STRIDE Analysis Patterns

Apply the STRIDE threat-modeling methodology to systematically identify and document security threats during design, reviews, or audits.

Makepad Event & Action Handling

Guides handling of input, lifecycle, and widget actions in Makepad apps — events, hit testing, timers, and parent-child action flow.

Makepad Basics

Guides agents to generate and explain Rust Makepad apps: setup, live_design!, app_main!, widget wiring and common patterns for cross-platform GUI development.

Makepad Basics (Claude variant)

Agent skill for Makepad starter apps: generates Rust examples, explains live_design! patterns, and guides event handling and widget wiring for beginner projects

Claimable Postgres (pg.new)

Provision temporary Postgres databases (pg.new) instantly for demos, prototyping, and local development; returns a connection string and claim URL (72-hour expi

API Security Testing

Guided workflow for testing REST and GraphQL APIs: authentication, authorization, input validation, rate limiting, error handling, and common API vulnerabilitie

Related Skills

Development Worktree

Create an isolated git worktree for feature work, auto-run project setup, and verify a clean test baseline before development.

TradeOS

Natural-language driven CEX trading and portfolio management for agents: API key vaulting, multi-exchange orders, DCA, arbitrage scanning, alerts and security r

Full Stack Builder

End-to-end builder that scaffolds, implements, tests, and optionally deploys web and API applications from a natural-language specification.

Claw Bench

Benchmarking skill that guides an agent through a structured suite of capability tests and reporting steps for leaderboard submission.

Java 25 & Spring Boot 4 Code Reviewer

Run focused, evidence-based code reviews for Java 25 and Spring Boot 4 projects — migration risks, architecture boundaries, null-safety (JSpecify), security, an

ArcKit — French Public Procurement (fr-marche-public)

Generates French public procurement (Dossier de Consultation des Entreprises) drafts aligned with the Code de la Commande Publique, UGAP frameworks, and DINUM d

ArcKit Architecture Conformance

Run a systematic architecture conformance assessment that compares ADRs and principles against HLD/DLD artifacts to surface drift, violations, and technical deb

Supabase SDK Patterns (TypeScript & Python)

Production-ready patterns for using Supabase clients in TypeScript and Python: client initialization, typed queries, auth, realtime, storage, RPC, and error-han

Node.js Best Practices

What it does

When to use it

What's included

Compatible agents