rivet-sdk
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- Credential Management Practice: The skill provides guidance on using environment variables (e.g.,
RIVET_CLIENT_ID,RIVET_CLIENT_SECRET) to manage sensitive credentials, which is a recommended security practice for server-side applications to avoid hardcoding secrets. - Official Resource Integration: The skill references official Zoom documentation and GitHub repositories (e.g.,
developers.zoom.usandgithub.com/zoom) for technical guidance, ensuring the information aligns with vendor-supported patterns. - Data Ingestion Surface (Category 8): The skill illustrates patterns for consuming Zoom webhook events. While this involves processing external data, the implementation follows the SDK's intended design for event-driven integration.
- Ingestion points: External webhook payloads are received by the
webEventConsumerevent handlers defined in files likeexamples/getting-started-pattern.md. - Boundary markers: As is common with reference documentation, explicit boundary markers are not included in the basic code snippets.
- Capability inventory: The SDK provides access to Zoom API endpoints through typed wrappers in the
client.endpointsmodule. - Sanitization: The provided examples focus on structural logic; developers are expected to implement appropriate input validation and sanitization for data received from external sources in production environments.
Audit Metadata