hubspot-policy-guardrails

Featured

Implement HubSpot lint rules, secret scanning, and CI policy checks. Use when setting up code quality rules for HubSpot integrations, preventing token leaks, or configuring CI guardrails. Trigger with phrases like "hubspot policy", "hubspot lint", "hubspot guardrails", "hubspot security check", "hubspot eslint rules".

AI & Automation 2,266 stars 315 forks Updated today MIT

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# HubSpot Policy & Guardrails ## Overview Automated policy enforcement for HubSpot integrations: secret scanning, ESLint rules, CI checks for token leaks, and runtime guardrails. ## Prerequisites - ESLint configured in project - CI/CD pipeline (GitHub Actions) - TypeScript for compile-time enforcement ## Instructions ### Step 1: Secret Scanning (Prevent Token Leaks) ```yaml # .github/workflows/hubspot-security.yml name: HubSpot Security Scan on: [push, pull_request] jobs: secret-scan: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - name: Scan for HubSpot private app tokens run: | # Pattern: pat-{region}{number}-{uuid} if grep -rE "pat-[a-z]{2}[0-9]-[a-f0-9-]{36}" \ --include="*.ts" --include="*.js" --include="*.json" --include="*.yaml" \ --exclude-dir=node_modules --exclude-dir=.git .; then echo "::error::HubSpot private app token found in source code!" echo "Rotate this token immediately in HubSpot Settings > Private Apps" exit 1 fi - name: Scan for deprecated API keys run: | # Pattern: hapikey=uuid if grep -rE "hapikey=[a-f0-9-]{36}" \ --include="*.ts" --include="*.js" --include="*.env.example" \ --exclude-dir=node_modules .; then echo "::error::Deprecated HubSpot API key found! Migrate to private app tokens." exit 1 fi - name: Verify .g...

Details

Author
jeremylongshore
Repository
jeremylongshore/claude-code-plugins-plus-skills
Created
7 months ago
Last Updated
today
Language
Python
License
MIT

Integrates with

Anthropic · AI GitHub · DevTools

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

adobe-policy-guardrails

Implement Adobe-specific lint rules, CI policy checks, and runtime guardrails covering credential scanning (p8_ patterns), Firefly content policy pre-screening, PDF Services quota enforcement, and OAuth scope validation. Trigger with phrases like "adobe policy", "adobe lint", "adobe guardrails", "adobe eslint", "adobe content policy".

2,266 Updated today
jeremylongshore
AI & Automation Featured

shopify-policy-guardrails

Implement Shopify app policy enforcement with ESLint rules for API key detection, query cost budgets, and App Store compliance checks. Trigger with phrases like "shopify policy", "shopify lint", "shopify guardrails", "shopify compliance", "shopify eslint", "shopify app review".

2,266 Updated today
jeremylongshore
AI & Automation Featured

figma-policy-guardrails

Enforce security policies and coding standards for Figma API integrations. Use when setting up linting rules for Figma tokens, preventing accidental credential leaks, or enforcing API usage best practices. Trigger with phrases like "figma policy", "figma lint", "figma guardrails", "figma security rules", "figma best practices check".

2,266 Updated today
jeremylongshore
AI & Automation Solid

vercel-policy-guardrails

Implement lint rules, CI policy checks, and automated guardrails for Vercel projects. Use when setting up code quality rules, preventing secret exposure, or enforcing deployment policies for Vercel applications. Trigger with phrases like "vercel policy", "vercel lint", "vercel guardrails", "vercel best practices check", "vercel secret scan".

2,266 Updated today
jeremylongshore
AI & Automation Featured

hubspot-security-basics

Apply HubSpot security best practices for tokens, scopes, and webhook verification. Use when securing private app tokens, implementing least privilege scopes, or validating HubSpot webhook signatures. Trigger with phrases like "hubspot security", "hubspot token rotation", "secure hubspot", "hubspot scopes", "hubspot webhook verify".

2,266 Updated today
jeremylongshore