csrf-protection
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and implementation templates for CSRF protection. The content is educational and follows secure coding standards.
- [SAFE]: Code examples utilize standard security libraries such as csurf (Node.js) and flask-wtf (Python) and implement robust defenses like synchronizer tokens and double-submit cookies.
- [SAFE]: Security headers and cookie attributes (SameSite=Strict, Secure, HttpOnly) are correctly implemented in the examples to mitigate cross-site attacks.
- [SAFE]: The included utility script
scripts/security-checklist.shis a benign tool used to generate a markdown checklist and poses no security threat.
Audit Metadata