appwrite-go
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill correctly advises the use of environment variables (
os.Getenv) for handling sensitive configuration data such asAPPWRITE_PROJECT_IDandAPPWRITE_API_KEY, preventing hardcoded credentials. - [SAFE]: External dependencies are restricted to the author's own repository (
github.com/ChiragAgg5k/sdk-for-go) and standard ecosystem packages (github.com/open-runtimes/types-for-go), which are consistent with the skill's stated purpose. - [SAFE]: The server-side rendering (SSR) authentication examples include mandatory security best practices, specifically the use of
HttpOnly,Secure, andSameSiteStrictModeflags for session cookies to mitigate XSS and CSRF risks. - [SAFE]: The documentation includes a dedicated section on Permissions and Roles, providing explicit warnings against insecure configurations such as granting public write access (
role.Any()) to sensitive resources. - [SAFE]: No obfuscation, prompt injection attempts, or unauthorized persistence mechanisms were detected in the instructions or code samples.
Audit Metadata