convex-actions
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE] (SAFE): The code snippets use environment variables (process.env.RESEND_API_KEY, process.env.STRIPE_KEY) as expected for API authentication. No hardcoded secrets were found.\n- [EXTERNAL_DOWNLOADS] (SAFE): No external scripts or packages are downloaded or executed. The skill uses standard imports for the Convex framework.\n- [DATA_EXFILTRATION] (SAFE): Network requests via fetch target reputable third-party services (Stripe and Resend) consistent with the skill's documented purpose. No unauthorized access to sensitive local files was detected.\n- [PROMPT_INJECTION] (SAFE): The content is purely technical documentation and does not contain any instructions meant to bypass agent safety filters or override behavior.
Audit Metadata