nestjs-expert
github.com/sickn33/antigravity-awesome-skills
Scanned Thu, 28 May 2026 17:06:07 GMT
Scan ID crawl-a43vihsqp4b80b42ix14ts36 · 2ms
C
SCORE 55 / 100
Verdict: Proceed with caution
6 medium findings.
This skill ships without a capability manifest plus 5 other issues listed below.
0 critical0 high6 medium6 rules passed
Why grade C?
score · 55 / 100The current grade reflects 6 medium findings (6+ MEDs → C).
0 CRIT0 HIGH6 MED0 LOW
To reach a higher grade
- BReach Btarget score 75
Resolve 1 of 6 MED (cap is 5).
- AReach Atarget score 95
Resolve 4 of 6 MED (cap is 2).
Thresholds are documented at /docs/grading. Source-of-truth is the grade() function in @skillox/scanner.
Findings · ordered by severity
medNo capability manifest declaredThe skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.rule: no-manifest▾
No capability manifest declared
The skill ships without a `manifest.yaml` or `capabilities` block in its frontmatter. Without a manifest, the runtime cannot enforce what this skill is permitted to do.
rule:
no-manifestmedLink text shows "nest.js" but points at docs.nestjs.comThe visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "nest.js" but points at docs.nestjs.com
The visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
34- Solution priority: 1) Refactor module structure, 2) Use forwardRef, 3) Adjust provider scope
35- Tools: `nest generate module`, `nest generate service`
36- Resources: [Nest.js Modules](https://docs.nestjs.com/modules), [Providers](https://docs.nestjs.com/providers)← text→nest.js · href→docs.nestjs.com
37
38### Controllers & Request Handling
medLink text shows "nest.js" but points at docs.nestjs.comThe visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "nest.js" but points at docs.nestjs.com
The visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
479
480### Core Documentation
481- [Nest.js Documentation](https://docs.nestjs.com)← text→nest.js · href→docs.nestjs.com
482- [Nest.js CLI](https://docs.nestjs.com/cli/overview)
483- [Nest.js Recipes](https://docs.nestjs.com/recipes)
medLink text shows "nest.js" but points at docs.nestjs.comThe visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "nest.js" but points at docs.nestjs.com
The visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
480### Core Documentation
481- [Nest.js Documentation](https://docs.nestjs.com)
482- [Nest.js CLI](https://docs.nestjs.com/cli/overview)← text→nest.js · href→docs.nestjs.com
483- [Nest.js Recipes](https://docs.nestjs.com/recipes)
484
medLink text shows "nest.js" but points at docs.nestjs.comThe visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "nest.js" but points at docs.nestjs.com
The visible link text contains the domain `nest.js`, but the URL actually targets `docs.nestjs.com`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
481- [Nest.js Documentation](https://docs.nestjs.com)
482- [Nest.js CLI](https://docs.nestjs.com/cli/overview)
483- [Nest.js Recipes](https://docs.nestjs.com/recipes)← text→nest.js · href→docs.nestjs.com
484
485### Testing Resources
medLink text shows "passport.js" but points at www.passportjs.orgThe visible link text contains the domain `passport.js`, but the URL actually targets `www.passportjs.org`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.▾
Link text shows "passport.js" but points at www.passportjs.org
The visible link text contains the domain `passport.js`, but the URL actually targets `www.passportjs.org`. This is a phishing/smuggling pattern — the reader sees one host, the agent fetches another. Either update the text or the URL so they match.
493
494### Authentication
495- [Passport.js Strategies](http://www.passportjs.org)← text→passport.js · href→www.passportjs.org
496- [JWT Best Practices](https://tools.ietf.org/html/rfc8725)
497
skillox.io/r/crawl-a43vihsqp4b80b42ix14ts36