web-api
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill's instructions or metadata.
- [CREDENTIALS_UNSAFE]: The skill correctly handles sensitive information by referencing environment variables (e.g., $WEB_API_JWT_SECRET, $WEB_API_OAUTH_CLIENT_ID) rather than hardcoding actual credentials.
- [EXTERNAL_DOWNLOADS]: The skill references standard, well-known packages such as 'express', 'graphql', and '@trpc/server' from official registries, which is standard practice for the described functionality.
- [PROMPT_INJECTION]: The skill contains no instructions designed to bypass safety filters or override agent constraints.
Audit Metadata