| Security Measure | Description | |
|---|---|---|
| ☐ | Use HTTPS everywhere | Prevents basic eavesdropping and man-in-the-middle attacks |
| ☐ | Input validation and sanitization | Prevents XSS attacks by validating all user inputs |
| ☐ | Don't store sensitive data in the browser | No secrets in localStorage or client-side code |
| ☐ | CSRF protection | Implement anti-CSRF tokens for forms and state-changing requests |
| ☐ | Never expose API keys in frontend | API credentials should always remain server-side |
Austin Songer, CISSP austinsonger
🙃
taishikato
/ 1.txt
Created
May 10, 2025 20:42
— forked from GuiBibeau/1.txt
Vibe architecting prompts
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| I want you to refine this brainstorming document into a prompt for a deep research system that will be tasked with writing a technical spike | |
| research document on a software engineering project. The goal of this research is to help guide future agentic coding systems into | |
| having a good understanding of the technical landscape around the software the user wants to create. | |
| <context> | |
| Deep research is a category of product where large language models capable of test time compute are paired with capacities to: | |
| - search the web | |
| - browse documentatin | |
| - read research paper | |
| - further refine their research based on their finding |
mattppal
/ security-checklist.md
Last active
September 11, 2025 04:53
A simple security checklist for your vibe coded apps
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| I want you to refine this brainstorming document into a prompt for a deep research system that will be tasked with writing a technical spike | |
| research document on a software engineering project. The goal of this research is to help guide future agentic coding systems into | |
| having a good understanding of the technical landscape around the software the user wants to create. | |
| <context> | |
| Deep research is a category of product where large language models capable of test time compute are paired with capacities to: | |
| - search the web | |
| - browse documentatin | |
| - read research paper | |
| - further refine their research based on their finding |
aashari
/ 00 - Cursor AI Prompting Rules.md
Last active
September 15, 2025 10:05
Cursor AI Prompting Rules - This gist provides structured prompting rules for optimizing Cursor AI interactions. It includes three key files to streamline AI behavior for different tasks.
This repository contains a disciplined, evidence-first prompting framework designed to elevate an Agentic AI from a simple command executor to an Autonomous Principal Engineer.
The philosophy is simple: Autonomy through discipline. Trust through verification.
This framework is not just a collection of prompts; it is a complete operational system for managing AI agents. It enforces a rigorous workflow of reconnaissance, planning, safe execution, and self-improvement, ensuring every action the agent takes is deliberate, verifiable, and aligned with senior engineering best practices.
I also have Claude Code prompting for your reference: https://gist.github.com/aashari/1c38e8c7766b5ba81c3a0d4d124a2f58
BlackthornYugen
/ caffeinate_unti.sh
Created
December 15, 2023 17:18
Run caffeinate when battery is above a given value, preventing MacOS from sleeping.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Default values | |
| verbose=0 | |
| min_battery=20 | |
| log() { | |
| if [[ "$verbose" -gt 0 ]]; then | |
| echo "$@" | |
| fi |
kbagher
/ mac_security_check.sh
Last active
January 13, 2024 15:41
The script is a macOS security audit tool, checking vital features like System Integrity Protection, Gatekeeper, Firewall, and FileVault. It evaluates security settings, lists non-Apple kernel extensions, and logs failures for review, providing a quick, comprehensive security overview in an easily interpretable PASS/FAIL format.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ###### Tasks Requiring Manual Checking ###### | |
| # Review Installed Applications: | |
| # Steps: Open Applications folder and Launchpad. | |
| # Signs of Compromise: Unfamiliar or unexpected applications installed. | |
| # Check App Permissions: | |
| # Steps: System Preferences → Security & Privacy → Privacy tab. | |
| # Signs of Compromise: Unusual permissions granted to unknown applications. | |
| # Audit Browser Extensions: |
bhaktatejas922
/ ros2-install-mac.sh
Last active
December 15, 2023 18:57
Macos Ros2 install script wth conda
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/zsh | |
| # Ensure Xcode and Command Line Tools are installed | |
| xcode-select --install | |
| sudo xcode-select --switch /Applications/Xcode.app/Contents/Developer | |
| sudo xcodebuild -license | |
| # Install Homebrew | |
| which -s brew |
victor141516
/ macos-setuo.sh
Last active
December 15, 2023 18:50
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Install Homebrew | |
| /bin/bash -c "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/HEAD/install.sh)" | |
| eval "$(/opt/homebrew/bin/brew shellenv)" | |
| # Tap needed repos | |
| brew tap homebrew/cask-fonts | |
| # Install some stuff from Homebrew | |
| brew install --cask \ | |
| alex313031-thorium \ |
nathansgreen
/ new-mac-iinit.sh
Last active
February 26, 2024 15:02
Initial setup for a new MacOS install
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env sh | |
| # stuff to do when setting up a fresh install of MacOS | |
| set -o errexit -o nounset -o noclobber | |
| [ -e /etc/pam.d/sudo_local ] || \ | |
| echo 'auth sufficient pam_tid.so' \ | |
| | sudo tee /etc/pam.d/sudo_local | |
| softwareupdate --install-rosetta --agree-to-license |
syneart
/ meld_hotfix_sonoma.sh
Last active
September 4, 2025 15:53
Meld v3.21.0 (r4) hot-fix for macOS on Intel CPU / Apple Silicon CPU with Rosetta
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ### Test on https://github.com/yousseb/meld/releases/tag/osx-20 | |
| ### OSX - 3.21.0 (r4) Sonoma | |
| ### !!! Note: You need put the Meld.app r4 build to the /Applications path first. | |
| #!/bin/zsh | |
| #Fix libpng16.16.dylib not found | |
| install_name_tool -change /usr/local/opt/libpng/lib/libpng16.16.dylib @executable_path/../Frameworks/libpng16.16.dylib /Applications/Meld.app/Contents/Frameworks/libfreetype.6.20.0.dylib | |
| #Fix libbrotlidec.1.dylib not found |
NewerOlder