CtrlK
BlogDocsLog inGet started
Tessl Logo

ideogram-security-basics

Apply Ideogram security best practices for secrets and access control. Use when securing API keys, implementing least privilege access, or auditing Ideogram security configuration. Trigger with phrases like "ideogram security", "ideogram secrets", "secure ideogram", "ideogram API key security".

Install with Tessl CLI

npx tessl i github:jeremylongshore/claude-code-plugins-plus-skills --skill ideogram-security-basics
What are skills?

82

1.46x

Quality

77%

Does it follow best practices?

Impact

92%

1.46x

Average score across 3 eval scenarios

Optimize this skill with Tessl

npx tessl skill review --optimize ./plugins/saas-packs/ideogram-pack/skills/ideogram-security-basics/SKILL.md
SKILL.md
Review
Evals

Evaluation results

88%

23%

Ideogram Webhook Handler

Webhook signature verification and audit logging

Criteria
Without context
With context

crypto module import

87%

100%

HMAC SHA-256 algorithm

100%

100%

Timing-safe comparison

100%

100%

Buffer conversion

100%

100%

AuditEntry interface fields

0%

100%

Optional metadata field

0%

100%

Timestamp injection

87%

100%

Dual audit destinations

0%

0%

Local log format

50%

100%

Verification before processing

100%

100%

Audit log on both outcomes

100%

100%

Without context: $0.2485 · 1m · 14 turns · 17 in / 3,362 out tokens

With context: $0.2756 · 57s · 18 turns · 286 in / 3,002 out tokens

94%

40%

Ideogram Integration Bootstrapping

Environment setup, .gitignore, and service account pattern

Criteria
Without context
With context

IDEOGRAM_API_KEY variable

0%

0%

IDEOGRAM_SECRET variable

0%

100%

.env in gitignore

100%

100%

.env.local in gitignore

100%

100%

.env.*.local in gitignore

0%

100%

Separate read client

60%

100%

Separate write client

60%

100%

Dev scope documented

20%

100%

Staging scope documented

30%

100%

Prod scope documented

70%

100%

Per-environment key guidance

75%

100%

Env vars from process.env

100%

100%

Without context: $0.3788 · 1m 40s · 23 turns · 29 in / 4,998 out tokens

With context: $0.4848 · 1m 51s · 30 turns · 70 in / 5,456 out tokens

96%

26%

Ideogram API Key Rotation

Secret rotation script and procedure

Criteria
Without context
With context

set -euo pipefail

100%

100%

Generate step documented

100%

100%

Update env var step

60%

100%

Health check call

0%

66%

Authorization header format

0%

100%

Revoke after verify

100%

100%

Revoke step documented

100%

100%

IDEOGRAM_API_KEY variable name

50%

100%

Health check failure guidance

100%

100%

Step ordering in runbook

100%

100%

Without context: $0.2431 · 1m 27s · 11 turns · 16 in / 4,598 out tokens

With context: $0.3405 · 1m 34s · 18 turns · 280 in / 4,906 out tokens

Evaluated
Agent
Claude Code
Model
Claude Sonnet 4.6

Table of Contents

Ideogram Webhook HandlerIdeogram Integration BootstrappingIdeogram API Key Rotation

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.

Claim skill