appwrite-kotlin
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard and secure implementation patterns for the Appwrite Kotlin SDK.
- [SAFE]: Secrets such as API keys are managed using environment variables (
System.getenv("APPWRITE_API_KEY")) rather than hardcoded strings. - [SAFE]: Includes explicit guidance on Appwrite's permission system, highlighting the risks of public access (
Role.any()) and the importance of resource-level security. - [SAFE]: SSR examples include necessary security flags for session cookies (
httpOnly,secure,SameSite=Strict) to mitigate common web vulnerabilities like XSS. - [SAFE]: All external references and dependencies are to a well-known service and its official SDKs.
Audit Metadata