backend-dev-guidelines
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE] (SAFE): The skill provides best practices for secret management, specifically advising against hardcoding credentials and recommending environment variables. Example configurations use harmless placeholders for database and service keys.
- [EXTERNAL_DOWNLOADS] (SAFE): All referenced dependencies are standard, reputable packages from the Node.js and Python ecosystems. No suspicious third-party sources or untrusted package registries are mentioned.
- [REMOTE_CODE_EXECUTION] (SAFE): No evidence of remote script fetching and execution or arbitrary command injection. Commands provided are standard development and testing tasks.
- [PROMPT_INJECTION] (SAFE): The instructions are technical and instructional in nature, with no attempts to override agent behavior, bypass safety guardrails, or leak system prompts.
Audit Metadata