Skill UI

This guide demonstrates how to implement robust Role-Based Access Control (RBAC) for MaintainX integrations using TypeScript and Express. It defines multiple user roles (Admin, Manager, Technician, Viewer) with specific, granular permissions across various resources (work orders, assets, locations). The implementation utilizes permission middleware and scoped API keys to ensure that users can only perform actions designated by their assigned role, enforcing security and data integrity at the API level.

This guide details implementing robust Role-Based Access Control (RBAC) within a PostHog Enterprise environment. It covers managing the three-level hierarchy (Organization > Project > Resource), assigning granular member roles (Owner, Admin, Member), configuring scoped API keys for secure integrations, and enforcing enterprise-grade authentication via SSO/SAML. Includes steps for setting up project permissions and auditing system changes.

This comprehensive guide provides a detailed framework for optimizing spending across Replit services. Learn how to conduct a thorough billing audit, right-size deployment resources (Autoscale vs. Reserved VM), manage data egress costs, optimize team seat licenses, and clean up idle resources. Essential for controlling cloud spending and ensuring efficient resource allocation in any development workflow.

Execute controlled chaos experiments to proactively test system resilience, fault tolerance, and recovery capabilities. This toolkit simulates real-world failures, such as network latency, service crashes, resource exhaustion, and dependency outages, ensuring that microservices degrade gracefully and recover automatically. It is essential for modern distributed systems validation.

This guide provides a comprehensive, environment-aware setup for Sentry in local development workflows. It details how to correctly route development events to separate DSNs, enable verbose debugging, and maximize data capture rates (e.g., setting sample rates to 1.0). Users learn to use `startSpan` for performance profiling and ensure that sensitive credentials are safely managed outside of source control.

This guide demonstrates how to implement robust Role-Based Access Control (RBAC) and financial governance for cloud GPU environments. It allows organizations to allocate resources, set team-specific budgets, whitelist approved GPUs, and track spending via detailed audit logs. Ideal for multi-team research and engineering environments requiring strict cost accountability and access separation.

This guide details how to implement environment isolation (dev, staging, prod) for GPU cloud deployments on Vast.ai. It uses environment variables and configuration classes to enforce separate API keys, budget caps, instance limits, and GPU whitelists for each deployment tier, ensuring efficient resource management and cost control.

Configure Vercel's advanced role-based access control (RBAC) for enterprise environments. This guide covers setting up granular team roles, managing project-level access groups, integrating SAML SSO for secure authentication, and enabling detailed audit logging. Use this when implementing strict security protocols and enforcing the principle of least privilege across your team's deployments and resources.

This skill integrates advanced AI assistance into Git workflows within the Windsurf IDE. It automates complex source control tasks, including generating descriptive commit messages from staged changes, suggesting optimal branch names, assisting with merge conflict resolution, and streamlining common Git operations. Ideal for developers managing version control or needing robust support for collaborative coding environments.

This guide provides a deep, investigation-driven methodology for reviewing Django and Django REST Framework (DRF) codebases. It helps identify critical authorization gaps, focusing on Insecure Direct Object References (IDOR) and object-level access failures. Learn how to trace data flows, analyze custom managers, and verify that users can only access resources they are explicitly authorized to view or modify.

Implements rate limiting and throttling controls via token bucket, sliding window, and fixed window strategies with Redis counters, gateway plugins, or middleware, returning HTTP 429/Retry-After to defend auth and API endpoints from brute force, abuse, and resource exhaustion.

Define a Gitleaks-driven secret scanning workflow that spans repo baseline scans, pre-commit hooks, GitHub Actions CI/CD runs, custom detection rules, and remediation steps to stop hard-coded credentials from entering source control.