Skills Guide

Node.js LTS Backend

VerifiedCaution

Node.js 20 LTS runtime with Express, TypeScript and server patterns. PostgreSQL management, async operations and crypto handling.

Sby Skills Guide Bot
DevelopmentIntermediate
406/2/2026
Claude Code
#nodejs#es-modules#backend-development#async-patterns#postgresql

Recommended for

Backend developerClaude CodeCode reviewFrontend developerFullstack developerRefactoring

Our review

This skill describes using Node.js 20 LTS with Express and TypeScript for backend development, covering ES modules, environment configuration, PostgreSQL connection pooling, and async patterns.

Strengths

  • Uses ESM and TypeScript for modern, typed code.
  • Robust PostgreSQL connection management with pooling and transactions.
  • Validated environment configuration with sensible defaults.
  • Clear async patterns for I/O operations.

Limitations

  • Tied to a specific project (INVOOPAY); some configurations may be customized.
  • Does not cover all Node.js APIs, only common patterns.
  • Depends on external packages (pg, Sharp, etc.) not detailed.
When to use it

Use this skill when building backend services with Node.js, Express, TypeScript, and PostgreSQL requiring async patterns and database management.

When not to use it

Avoid this skill for projects using other runtimes (Deno, Bun) or non-relational databases without adaptation.

Security analysis

Caution
Quality score85/100

The skill provides legitimate Node.js backend patterns but includes a hardcoded secret fallback and permits Bash execution. While no destructive actions are instructed, these elements elevate caution.

Findings
  • Hardcoded development fallback for JWT_SECRET may encourage insecure defaults.
  • Allowed Bash tool could be misused for arbitrary system commands, though it's a common backend necessity.

Examples

Create a product service method
Create a Node.js service method to fetch a product by ID from PostgreSQL, using async/await and returning null if not found. Use the existing pool from db/client.ts.
Set up environment configuration
Write an environment configuration module with validated variables (PORT, DB_HOST, JWT_SECRET) and defaults. Use dotenv and export an env object.
Implement a transaction with rollback
Create a function that inserts a new order and updates inventory in a PostgreSQL transaction, rolling back on error and releasing the client in a finally block.

name: node description: | Node.js LTS runtime and server-side JavaScript patterns for INVOOPAY backend. Use when: working with backend services, async operations, crypto, Buffer handling, or Node.js APIs. allowed-tools: Read, Edit, Write, Glob, Grep, Bash

Node Skill

Node.js 20 LTS runtime powering Express + TypeScript backend. Uses ES modules ("type": "module") with tsx for development. PostgreSQL via pg with connection pooling. Sharp for image processing.

Quick Start

Module System (ESM)

// backend/src/server.ts - Entry point
import app from './app.js';           // .js extension required for ESM
import { env } from './config/env.js';

app.listen(env.port, () => {
  console.log(`Backend listening on port ${env.port}`);
});

Environment Configuration

// backend/src/config/env.ts - Validated env with defaults
import dotenv from 'dotenv';
dotenv.config();

const required = (value: string | undefined, fallback?: string) => {
  if (value) return value;
  if (fallback !== undefined) return fallback;
  throw new Error('Missing required environment variable');
};

export const env = {
  port: Number(process.env.PORT ?? 4000),
  dbHost: process.env.DB_HOST ?? 'localhost',
  jwtSecret: required(process.env.JWT_SECRET, 'dev-only-secret'),
  nodeEnv: process.env.NODE_ENV ?? 'development',
};

Database Connection Pool

// backend/src/db/client.ts
import pg from 'pg';
const { Pool } = pg;

export const pool = new Pool({
  host: env.dbHost,
  max: 20,                    // Max connections
  idleTimeoutMillis: 30000,   // Close idle after 30s
  connectionTimeoutMillis: 2000,
});

pool.on('error', (err) => {
  console.error('Unexpected error on idle client', err);
  process.exit(-1);           // Crash on pool errors
});

Key Concepts

| Concept | Usage | Example | |---------|-------|---------| | ESM imports | Always use .js extension | import { x } from './mod.js' | | __dirname | Use import.meta.url | path.dirname(fileURLToPath(import.meta.url)) | | Async/await | All I/O operations | await pool.query(...) | | Buffer | Binary data handling | Buffer.from(data, 'hex') | | crypto | Encryption/hashing | crypto.randomBytes(32) |

Common Patterns

Async Service Method

export const productService = {
  async get(id: number, language: string = 'en') {
    const result = await pool.query(
      'SELECT * FROM products WHERE id = $1', [id]
    );
    if (!result.rows[0]) return null;
    return mapProduct(result.rows[0]);
  }
};

Transaction with Rollback

const client = await pool.connect();
try {
  await client.query('BEGIN');
  await client.query('INSERT ...', [...]);
  await client.query('UPDATE ...', [...]);
  await client.query('COMMIT');
} catch (error) {
  await client.query('ROLLBACK');
  throw error;
} finally {
  client.release();  // Always release!
}

See Also

  • patterns - Async patterns, error handling
  • types - TypeScript integration
  • modules - Project structure, imports
  • errors - Error handling patterns

Related Skills

For Express routes and middleware, see the express skill. For database queries, see the postgresql skill. For TypeScript patterns, see the typescript skill.

Related skills

Next.js App Router Expert

Development

A skill that turns Claude into a Next.js App Router expert.

Claude CodeCursoradvanced
890
234
2,846
Admin

README Generator

Development

Creates professional and comprehensive README.md files for your projects.

claudeCursorWindsurfbeginner
259
72
821
Admin

API Documentation Writer

Development

Generates comprehensive API documentation in OpenAPI/Swagger format.

claudeCursorWindsurfintermediate
156
44
682
Admin