auth-setup
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill installs the
@supabase/auth-helpers-nextjspackage. This is a trusted dependency maintained by the official Supabase organization, posing no security risk in this context. - [COMMAND_EXECUTION] (SAFE): The instructions include running
supabase db pushandsupabase config push. These are legitimate operations intended to apply database schemas and service configurations to the user's project. - [CREDENTIALS_UNSAFE] (SAFE): The skill prompts the user to enter their Resend API key into a local environment file (
.env.local) and uses theenv()function for secure interpolation in the configuration file, adhering to best practices for secret management.
Audit Metadata