stripe-checkout
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE] (SAFE): API keys are managed through environment variables. The skill uses safe placeholders for demonstration purposes and includes logic to validate their presence.\n- [DATA_EXFILTRATION] (SAFE): No unauthorized data leakage or suspicious network requests were found. Communication is limited to official Stripe API endpoints for session creation and verification.\n- [REMOTE_CODE_EXECUTION] (SAFE): The skill does not perform any remote code execution or download unverified scripts. It uses standard, trusted packages for its functionality.\n- [COMMAND_EXECUTION] (SAFE): No shell command execution or subprocess spawning was identified in the source code.\n- [PROMPT_INJECTION] (SAFE): The skill body and metadata contain no patterns of prompt injection, role-play manipulation, or instructions to override AI safety constraints.
Audit Metadata