Skills
skills/auth0/agent-skills/auth0-spa-js/Gen Agent Trust Hub

auth0-spa-js

Pass

Audited by Gen Agent Trust Hub on May 5, 2026

Risk Level: SAFEREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [REMOTE_CODE_EXECUTION]: The setup documentation in references/setup.md provides scripts that fetch and execute the Auth0 CLI installer from the official Auth0 GitHub repository.
  • Evidence: curl -sSfL https://raw.githubusercontent.com/auth0/auth0-cli/main/install.sh | sh in the bash setup guide.
  • [COMMAND_EXECUTION]: The skill instructs the agent to utilize shell commands for environment verification, version checks, and build testing. Additionally, included Node.js scripts use the execa library to automate configuration tasks via the Auth0 CLI.
  • Evidence: Agent instructions in SKILL.md to run gh api repos/auth0/auth0-spa-js/releases/latest and npm run build.
  • Evidence: Programmatic use of the auth0 CLI via execa in scripts/utils/auth0-api.mjs, scripts/utils/clients.mjs, and scripts/utils/validation.mjs.
  • [EXTERNAL_DOWNLOADS]: The skill references the Auth0 SDK and CLI from official vendor sources, including CDN links and package registries.
  • Evidence: CDN link https://cdn.auth0.com/js/auth0-spa-js/$VERSION/auth0-spa-js.production.js mentioned in SKILL.md.
  • Evidence: CLI installation via brew, curl (GitHub), and scoop in references/setup.md.
Audit Metadata
Risk Level
SAFE
Analyzed
May 5, 2026, 11:16 PM