
from trezor-suite1,019
Ensures generated code aligns with security headers and permissions policies, specifically for navigator object interactions.
This skill provides a rigorous framework for maintaining security header compliance within the Trezor Suite ecosystem. It ensures that any code generated or modified adheres to strict security constraints, preventing unsafe JavaScript execution (like eval) and managing the Permissions-Policy to restrict sensitive browser features.
Use this skill when modifying code that interacts with the navigator object, updating web security constants, or implementing new browser-based features that require specific hardware or API access (USB, Camera, Clipboard).
usb, camera, clipboard-write, and local-network-access.packages/suite-web/constants/webSecurityHeaders.ts and MDN documentation for Permissions Policy.Designed for agents operating within the Trezor Suite monorepo, likely using Codex or similar ACP-based harnesses with filesystem access.
This skill has not been reviewed by our automated audit pipeline yet.
Trezor Suite — Naming Conventions
Coding and naming conventions for Trezor Suite: guidance on variable, function, boolean, component names and project-specific conventions.
Skills & Code Style Contribution
Guidelines and workflows for proposing and contributing code style changes to the Trezor Suite repository.