express
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a guide for Express.js development, focusing on architectural patterns and security guardrails without any malicious instructions.
- [SAFE]: Security is a primary focus, with explicit instructions to use
helmetfor security headers,corsfor origin control, andexpress-rate-limitfor rate limiting. - [SAFE]: The guide mandates the use of validation libraries like
zodorjoito sanitize and validate all request data at API boundaries, which is a key defense against injection attacks. - [SAFE]: Sensitive data handling is correctly addressed by recommending
dotenvfor environment variables and cautioning against hardcoding secrets or exposing stack traces in production. - [SAFE]: All suggested dependencies and tools are standard, reputable packages within the Node.js and TypeScript ecosystems.
Audit Metadata