Code Quality
Zero Middleware™ Auditor
Scans your project and flags Zero Middleware methodology violations
About this skill
Zero Middleware™ Auditor
Audits your Lovable project for compliance with the Zero Middleware™ methodology. All server-side logic should live in Edge Functions with direct API calls, NOT external orchestration tools like n8n, Make, or Zapier.
What it checks
- Direct API calls from frontend (should live in Edge Functions)
- Hardcoded secrets (should be in Lovable Cloud Secrets)
- External orchestration dependencies (Tier 4 violations)
- Edge function security patterns (auth first, validation, authorization, error handling)
- Webhook signature verification
- Scheduled task implementation
When to use
Run before any deployment, after major architecture changes, or when integrating new services. Outputs a compliance scorecard with ranked fixes by severity.
Why it matters
Every middleware violation is a future failure point, security risk, or recurring cost. Catching them at the architecture level prevents them from compounding.
SKILL.md preview
---
name: zero-middleware-auditor
description: Use when reviewing a Lovable project for architectural compliance with Zero Middleware methodology, before integrating external orchestration tools, or when auditing edge function security.
---
# Zero Middleware™ Auditor
Audits a Lovable project for compliance with the Zero Middleware™ methodology.