authentication-setup
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate security guidance for authentication system design. It explicitly mandates the use of proven hashing algorithms (bcrypt/argon2) and forbids the storage of plaintext passwords or hardcoding of secrets.
- [SAFE]: External dependencies and tools mentioned (such as jsonwebtoken, bcrypt, and postgres) are standard, well-known technologies appropriate for the skill's purpose. References point to trusted official documentation sites including OWASP and NIST.
- [SAFE]: Configuration examples in
.env.exampleand SQL schemas use generic placeholders rather than hardcoded credentials, minimizing the risk of accidental exposure. - [SAFE]: No signs of obfuscation, remote code execution, or unauthorized network operations were found in the provided files.
Audit Metadata