From d68af65c36cc2017e70da9b87e7ad0d1eee29ba1 Mon Sep 17 00:00:00 2001
From: Renzo <renzomacar@gmail.com>
Date: Sun, 10 May 2026 18:33:07 +0800
Subject: [PATCH 1/2] Add appwrite-security-skill (MIT auditor for any-role
 grants + public buckets)

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 883de9655..0866074b7 100644
--- a/README.md
+++ b/README.md
@@ -247,6 +247,7 @@ The Almost Netflix series is a tutorial for building a Netflix clone with Appwri
 
 - [Restricting Access to Your Appwrite Console](https://medium.com/appwrite-io/you-can-now-restrict-access-to-your-appwrite-console-b8b447885289?source=friends_link&sk=95b78cf75ff633e0f32b8a76ea619b08)
 - [Full List of Appwrite Environment Variables](https://appwrite.io/docs/environment-variables)
+- [appwrite-security-skill](https://github.com/Perufitlife/appwrite-security-skill) - Open-source MIT auditor that probes anonymously to find "any" role grants on collections, public storage buckets, and unprotected execute-functions in your Appwrite project. Outputs an HTML report with copy-paste fix snippets. Hosted run on Apify (no install): [apify.com/renzomacar/appwrite-security-auditor](https://apify.com/renzomacar/appwrite-security-auditor).
 
 ### Appwrite Services
 

From 8980870670eead41d446954e57a7ebe9230aba85 Mon Sep 17 00:00:00 2001
From: Renzo <renzomacar@gmail.com>
Date: Sun, 10 May 2026 18:40:45 +0800
Subject: [PATCH 2/2] Address review: move appwrite-security-skill to Tools
 section + shorten description

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 0866074b7..8729de7aa 100644
--- a/README.md
+++ b/README.md
@@ -247,7 +247,6 @@ The Almost Netflix series is a tutorial for building a Netflix clone with Appwri
 
 - [Restricting Access to Your Appwrite Console](https://medium.com/appwrite-io/you-can-now-restrict-access-to-your-appwrite-console-b8b447885289?source=friends_link&sk=95b78cf75ff633e0f32b8a76ea619b08)
 - [Full List of Appwrite Environment Variables](https://appwrite.io/docs/environment-variables)
-- [appwrite-security-skill](https://github.com/Perufitlife/appwrite-security-skill) - Open-source MIT auditor that probes anonymously to find "any" role grants on collections, public storage buckets, and unprotected execute-functions in your Appwrite project. Outputs an HTML report with copy-paste fix snippets. Hosted run on Apify (no install): [apify.com/renzomacar/appwrite-security-auditor](https://apify.com/renzomacar/appwrite-security-auditor).
 
 ### Appwrite Services
 
@@ -541,6 +540,7 @@ Share your apps here! Submit a pull request!
 - [Fetch Appwrite Types](https://github.com/YsarocK/fetch-appwrite-types) generate Typescript Interfaces from Appwrite DB
 - [AdminWrite](https://github.com/singhbhaskar/AdminWrite) helper tool for Appwrite to perform bulk operations during development for Database and Users.
 - [Appwrite Funcover](https://github.com/BoolCode/appwrite-funcover) "Cover" your Appwrite G3 functions with a dedicated endpoint, for static pages, direct execution and more.
+- [appwrite-security-skill](https://github.com/Perufitlife/appwrite-security-skill) MIT-licensed security auditor — finds "any" role grants, public buckets, and unprotected functions.
 
 ## Communities