Can I customize the guardrails for my specific environment?

Yes, the skill provides OPA (Open Policy Agent) templates and runtime checks that can be configured to allow or block specific operations based on the current environment, such as production or staging.

How does this skill prevent API key leaks?

It implements custom ESLint rules and pre-commit hooks that specifically scan for Exa secret key patterns, blocking commits if production keys are detected in the source code.

Does this require specific tools to be installed?

The skill leverages standard development tools like ESLint, pre-commit, and TypeScript, providing the specific configurations and scripts needed to integrate them with Exa.

What is the benefit of using the ADR template included?

The Architecture Decision Record (ADR) template ensures consistent team decisions regarding client initialization and patterns, which are then reinforced by automated CI checks.

Exa Policy Guardrails

Name: Exa Policy Guardrails
Author: jeremylongshore

byjeremylongshore

•

983

보안 및 테스팅

Enforces security standards, best practices, and automated quality checks for Exa integrations.

소개

Exa Policy Guardrails is a specialized Claude Code skill designed to harden and standardize Exa integrations within software projects. It automates the implementation of custom ESLint rules to prevent secret leaks, sets up pre-commit hooks for configuration validation, and integrates Policy-as-Code (OPA) into CI/CD pipelines. By providing runtime safeguards and architectural templates, this skill ensures that Exa usage remains secure, strictly typed, and performant across development and production environments, preventing common pitfalls like hardcoded keys and rate-limit exhaustion.

주요 기능

CI/CD integration templates for GitHub Actions to automate policy enforcement.
983 GitHub stars
Policy-as-Code implementation using Open Policy Agent (OPA) for environment-specific checks.
Pre-commit hooks for secret detection and configuration schema validation.
Runtime guardrails to block dangerous operations and monitor rate limits.
Custom ESLint rules for Exa API key security and error handling.

사용 사례

Automating security audits and configuration schema validation in a CI/CD pipeline.
Preventing accidental commits of production Exa API keys in non-production environments.
Standardizing Exa client initialization patterns across large engineering teams.

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add jeremylongshore/claude-code-plugins-plus-skills exa-policy-guardrails

For use in Claude.ai and ChatGPT

Download Skill

GitHub

소개