phase-7-seo-security_skill

This skill helps improve search rankings and harden security by applying SEO best practices, meta tags, and vulnerability checks across the app.
  • JavaScript

45

GitHub Stars

1

Bundled Files

2 months ago

Catalog Refreshed

4 months ago

First Indexed

Readme & install

Copy the install command, review bundled files from the catalogue, and read any extended description pulled from the listing source.

Installation

Preview and clipboard use veilstrat where the catalogue uses aiagentskills.

npx veilstrat add skill popup-studio-ai/bkit-claude-code --skill phase-7-seo-security

  • SKILL.md10.2 KB

Overview

This skill enhances search visibility and hardens application security by combining SEO best practices with practical vulnerability defenses. It provides actionable checks for meta tags, structured data, performance, and common security risks like XSS, CSRF, and insecure session handling. Use it to make pages discoverable while reducing attack surface and ensuring safe client-server communication.

How this skill works

The skill inspects page-level SEO elements (title, description, Open Graph, canonical, sitemap) and validates structured data (JSON-LD, breadcrumbs, product/review schema). It runs security checks for input validation, session and cookie handling, security headers, CSRF tokens, XSS vectors, rate limiting, and environment variable exposure. It also recommends performance improvements affecting SEO such as image and font optimization and code splitting.

When to use it

  • Before public launch to ensure discoverability and baseline security
  • When improving search ranking or fixing organic traffic drops
  • During security hardening sprints or pre-release audits
  • When adding pages, dynamic content, or third-party integrations
  • Before deployment to production or during release reviews

Best practices

  • Provide per-page title and description and maintain Open Graph tags
  • Serve sitemap.xml and robots.txt and set canonical URLs
  • Enforce HTTPS, set security headers, and apply a sensible CORS policy
  • Validate all inputs server-side and avoid exposing sensitive data to the client
  • Use httpOnly cookies for tokens, include CSRF tokens, and sanitize user-rendered HTML
  • Optimize images, fonts, and bundle splitting to improve Core Web Vitals

Example use cases

  • Add JSON-LD breadcrumb and product schema to product pages to improve rich results
  • Audit an app for XSS and CSRF issues before a public release
  • Configure security headers and HTTPS enforcement for staging and production
  • Create a sitemap and per-page metadata to boost search indexing
  • Implement rate limiting middleware and minimal error responses to reduce attack vectors

FAQ

No. Use it for public-facing pages, SEO elements, and standard security layers. It is not intended for internal-only APIs or basic dev setups.

What immediate gains can I expect after applying this skill?

Faster indexing and clearer search snippets from correct meta tags and structured data, plus reduced exposure to common web vulnerabilities like XSS, CSRF, and leaked secrets.

Built by
VeilStrat
AI signals for GTM teams
© 2026 VeilStrat. All rights reserved.All systems operational