rzyfront/vendix-prisma
skills/vendix-prisma/SKILL.md
Prisma ORM overview for Vendix: Prisma 7 config, schema location, scoped services, migrations, seeds, and correct workspace commands. Trigger: When editing schema.prisma, creating migrations, using Prisma client, or seeding database data.
$ install --global
skillsauthnpx skillsauth add rzyfront/vendix vendix-prismaInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 16, 2026, 5:12 AM125.8s1 file scanned
SKILL.md
- name:
- vendix-prisma
- description:
- >
- Prisma ORM overview for Vendix:
- Prisma 7 config, schema location, scoped services,
- migrations, seeds, and correct workspace commands. Trigger:
- When editing schema.prisma,
- license:
- Apache-2.0
- author:
- rzyfront
- version:
- 2.1
- scope:
- [root]
- auto_invoke:
- When editing schema.prisma, creating migrations, or using Prisma client
When to Use
- Editing
apps/backend/prisma/schema.prisma. - Creating or reviewing migrations.
- Choosing the right Prisma service in NestJS.
- Running or updating seeds.
Current Prisma Setup
- Prisma packages are in
apps/backend/package.jsonand currently use Prisma 7.x. - Schema path:
apps/backend/prisma/schema.prisma. - Prisma config path:
apps/backend/prisma.config.ts. - Datasource URL is configured in
prisma.config.tsfromprocess.env.DATABASE_URL, not inschema.prisma. - Client uses
@prisma/adapter-pgandpg.Poolin backend Prisma services. - Models and fields are mostly
snake_case; enum values are mixed. Treat the schema as source of truth.
Scoped Services
Use domain-appropriate services instead of raw PrismaClient in request handlers:
| Domain | Service |
| --- | --- |
| domains/superadmin/ | GlobalPrismaService |
| domains/organization/ | OrganizationPrismaService |
| domains/store/ | StorePrismaService |
| domains/ecommerce/ | EcommercePrismaService |
| jobs/seeds/system scripts | GlobalPrismaService or explicit approved withoutScope() |
For model registration and tenant isolation details, use vendix-prisma-scopes.
Commands
Run from repo root unless stated otherwise:
npm run prisma:generate -w apps/backend
npm run prisma:studio -w apps/backend
npm run db:migrate:dev -w apps/backend
npm run db:migrate:prod -w apps/backend
npm run db:seed -w apps/backend
npm run db:reset -w apps/backend
npm run db:clean -w apps/backend
npm run db:reset-seed
Use vendix-prisma-migrations before creating/reviewing migration SQL.
Rules
- Do not use generic PascalCase Prisma examples in Vendix code; real model names are generally snake_case.
- Do not manually add tenant filters when the scoped service already applies them, unless using a documented base-client/manual-scope getter.
- Do not use
withoutScope()in request handlers without explicit approval. - Do not run destructive DB reset/clean commands unless the user explicitly asks.
- Always review generated SQL before committing migrations.
Related Skills
vendix-prisma-schemavendix-prisma-migrationsvendix-prisma-scopesvendix-prisma-seed
Related Skills
rzyfront/mobile-dev
development
VerifiedTrustedCommunity
Mobile app development rules for Vendix Expo/React Native project. Trigger: When editing, creating, or modifying any file under apps/mobile, or when developing mobile-specific features.
5SKILL.mdUpdated May 29, 2026
rzyfront/vendix-subscription-gate
development
VerifiedTrustedCommunity
Feature gating by store subscription state: global store write guard, AI feature gate, Redis feature resolution, quota consumption, frontend paywall interceptor, banner, and subscription UI states. Trigger: When adding feature gates, paywalls, subscription-based access control, protecting store write operations, AI feature gates, or rollout flags.
5SKILL.mdUpdated May 16, 2026
rzyfront/vendix-saas-billing
testing
VerifiedTrustedCommunity
SaaS subscription billing for Vendix stores: plan pricing, invoices, Wompi platform payments, manual payments, partner commissions, payouts, proration, and dunning. Trigger: When creating SaaS invoices, working with partner rev-share, margin/surcharge pricing, invoice sequence allocation, partner payout batches, subscription payments, manual payments, or dunning flows.
5SKILL.mdUpdated May 16, 2026
rzyfront/vendix-redis-quota
development
VerifiedTrustedCommunity
Periodic quota counters with Redis, UTC period keys, Lua-based idempotent AI quota consumption, request-id deduplication, and post-success consumption. Trigger: When building quota counters, enforcing monthly/daily feature caps, or reusing AI quota patterns for uploads, emails, exports, or rate-limited features.
5SKILL.mdUpdated May 16, 2026