appwrite-python
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill correctly uses environment variables (os.environ) for sensitive credentials like API keys and project IDs, preventing hardcoded secrets.
- [SAFE]: Secure cookie handling is demonstrated with recommended attributes (httponly, secure, samesite='Strict') to mitigate cross-site scripting (XSS) and request forgery risks.
- [SAFE]: The documentation includes critical security warnings regarding the use of permissive roles like Role.any() and the importance of configuring resource-level permissions.
- [SAFE]: External dependencies are limited to the official appwrite Python package from a well-known service provider.
Audit Metadata