Perplexity Policy & Guardrails

Trust Score 72/100

Policy-as-code and linting guardrails for Perplexity integrations: ESLint rules, pre-commit hooks, CI checks, and runtime safeguards to prevent secrets and unsa

triggers:perplexity policyperplexity lintperplexity guardrailsperplexity best practicesperplexity eslint

GitHub SKILL.md

What it does

Provides concrete policy enforcement patterns for Perplexity integrations: custom ESLint rules to catch hardcoded keys, pre-commit hooks, CI workflows enforcing policy-as-code (OPA rego examples), TypeScript strict patterns, and runtime guards to block dangerous operations in production.

When to use it

Use when integrating Perplexity into applications and you need automated checks to prevent secret leakage, enforce configuration schema and runtime safety, or add CI/lint gates for policy compliance. Trigger on phrases like 'perplexity policy', 'perplexity lint', or 'perplexity guardrails'.

What's included

Scripts: ESLint rule example, pre-commit hook YAML, CI workflow snippets, OPA rego policies, and runtime guard code examples. (has_scripts: false in repo snapshot)
References: architecture decision records and resources for implementing ESLint plugins and OPA.
Instructions: stepwise guidance to add rules, configure hooks, wire CI checks, and enable runtime protections.

Compatible agents

Useful for developer-facing agents and CI automation that can edit repo files or suggest code changes; works with Node/TypeScript, ESLint, and standard CI systems.

Audit Summary

Policy-as-code and linting guardrails skill for Perplexity integrations. No bundled scripts — all code is inline snippets in SKILL.md covering ESLint rules, pre-commit hooks, OPA policies, and CI checks. The skill is well-intentioned and security-positive but functions more as a reference guide than an executable skill. No runnable artifacts to test.

Watch Out

All code is inline in SKILL.md — no scripts/ directory with runnable files
Requires ESLint, pre-commit framework, OPA, and TypeScript setup to use fully
Pre-commit hook uses bash -c which could be a minor injection surface

Notes

Security-positive skill that promotes good practices (preventing hardcoded keys, adding guardrails). The skill itself is clean with no security concerns. Main limitation is that it's a documentation/template skill rather than an executable one — all code examples are embedded in SKILL.md rather than provided as runnable scripts. Located under tests/ext_conformance/ in the source repo, suggesting it may be a test artifact.

Information

Repository: pi_agent_rust
Stars: 1,065
Installs: 0

Trust Score

Overall72

Security88

Code Quality62

Architecture48

Usefulness45

More from pi_agent_rust

Websocket Client Creator

Generates and guides websocket client integrations: configuration, code samples, best practices, and validation for production-ready websocket clients.

Monitoring Stack Deployer

Deploy and configure production-ready monitoring stacks (Prometheus, Grafana, Datadog) with collectors, dashboards, and alerting rules for Kubernetes, Docker, o

Backlog Grooming Assistant

Automates backlog grooming tasks: prioritisation, ticket refinement, and configuration generation for enterprise workflows.

Vercel SDK Upgrade & Migration

Analyze, plan, and execute Vercel SDK upgrades with breaking-change detection and automated migration guidance.

Windsurf — Common Errors

Diagnose and resolve common Windsurf SDK/API errors (auth, rate limits, timeouts) with step-by-step fixes and diagnostics.

Related Skills

Development Worktree

Create an isolated git worktree for feature work, auto-run project setup, and verify a clean test baseline before development.

TradeOS

Natural-language driven CEX trading and portfolio management for agents: API key vaulting, multi-exchange orders, DCA, arbitrage scanning, alerts and security r

Java 25 & Spring Boot 4 Code Reviewer

Run focused, evidence-based code reviews for Java 25 and Spring Boot 4 projects — migration risks, architecture boundaries, null-safety (JSpecify), security, an

ArcKit — French Public Procurement (fr-marche-public)

Generates French public procurement (Dossier de Consultation des Entreprises) drafts aligned with the Code de la Commande Publique, UGAP frameworks, and DINUM d

Speak Security Basics

Security best practices for integrating Speak: API key management, audio data privacy, student data protection, and COPPA/FERPA compliance for production deploy

Python Tooling (uv + Ruff)

Tools and patterns for managing Python environments, installing packages, and linting/formatting code using uv and Ruff for fast, reproducible workflows.

SWE-AF — Autonomous Software Engineering Fleet

Orchestrates a coordinated multi-agent engineering workflow to plan, implement, test, and merge production-grade changes across single or multiple repositories.

Skill Vetter

Pre-install security gate that scans a skill for prompt-injection, secrets, and other vulnerabilities before installation.

Back to Skills