ssr-auth-integration
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill describes an authentication pattern based on standard cryptographic practices, specifically JWT (JSON Web Tokens) verified against JWKS (JSON Web Key Sets), ensuring stateless and secure identity verification.
- [SAFE]: The instructions emphasize critical security configurations for session management, such as setting
httpOnlyandsecureflags on cookies to prevent client-side script access and ensure encrypted transmission. - [SAFE]: It provides specific guidance on mitigating open-redirect vulnerabilities by using a
normalizeReturnTofunction to validate user-supplied redirect paths. - [SAFE]: The skill identifies and warns against dangerous anti-patterns, such as sharing secrets across trust boundaries or skipping verification steps, reinforcing a defense-in-depth approach.
- [SAFE]: The code examples use a specialized SDK (@eridu/auth-sdk) consistent with the vendor ecosystem described in the skill metadata, with no evidence of malicious external dependencies or remote code execution.
Audit Metadata