Google GeminiGoSecurity
Generic Security Rules for Google Gemini
Generic Security Rules adapted for Google Gemini. High-signal generic engineering guidance for real projects.
rules file
# Generic Security Rules for Google Gemini ## Input handling - Treat all external input as untrusted (body, query, headers, webhooks, files). - Validate at boundaries with explicit schema validation. - Use allowlists over denylists. ## Secrets & auth - Never commit secrets. Use env vars + secret manager. - Rotate keys periodically and after incidents. - Enforce least privilege for service tokens and DB roles. - Require idempotency keys for money-moving or side-effectful endpoints. ## Safe defaults - Deny-by-default authorization. - Structured security logging for auth failures and permission denials. - Never leak stack traces or secret values to clients.
How to use with Google Gemini
#security#auth#validation#gemini#generic-rules#go#ai-coding-rules
Related Rules
Go Cursor Rules
CursorGo
Cursor rules for Go: idiomatic Go patterns, error handling, concurrency, and Go module conventions.
Code Style
go · golangCopy Ready
Go Claude Rules
ClaudeGo
Claude rules for Go: project structure, error handling, testing, and idiomatic Go patterns.
Architecture
go · golangCopy Ready
Go Windsurf Rules
WindsurfGo
Windsurf rules for Go: hexagonal architecture, clean code, observability, and production Go patterns.
Architecture
go · windsurfCopy Ready
Echo Architecture Rules for GitHub Copilot
GitHub CopilotGo
SEO-ready GitHub Copilot rules for Echo architecture with copy-paste instructions, testing guardrails, and production-safe patterns.
General AI
copilot · goCopy Ready