api-design-ops
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists entirely of markdown documentation and code templates designed for educational and reference purposes. No executable scripts, installation routines, or remote code fetchers are present.
- [SAFE]: Security-related sections in
references/api-security.mdand other files provide accurate guidance on implementing industry-standard protections, including HMAC-SHA256 for webhook verification, proper JWT handling, and input validation using reputable libraries. - [SAFE]: External library references (e.g.,
golang-jwt,validator,tonic,apollo-server) are to well-known, established open-source projects and are used only within static code examples to illustrate architectural patterns. - [SAFE]: Code snippets use cryptographically secure placeholders and correctly advise against the storage of plaintext credentials, promoting the use of hashing and secure environment variables instead.
Audit Metadata