nodejs-backend
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides architectural templates and code snippets for Node.js development. No malicious patterns, obfuscation, or unauthorized data access were detected.
- [DATA_EXPOSURE]: The configuration section correctly demonstrates loading sensitive information like
DATABASE_URLandAPI_KEYfrom environment variables viaprocess.envrather than hardcoding them, which is a security best practice. - [COMMAND_EXECUTION]: No shell commands or subprocess executions are present in the skill.
- [PROMPT_INJECTION]: The instructions focus purely on code patterns and do not contain directives that attempt to override agent behavior or bypass safety filters.
- [REMOTE_CODE_EXECUTION]: No remote script downloads or dynamic code evaluation (e.g.,
eval,exec) are used. The skill references well-known, safe libraries.
Audit Metadata