stash-encryption
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate documentation and code examples for the
@cipherstash/stacklibrary, focusing on client-side encryption and secure data handling. - [EXTERNAL_DOWNLOADS]: The skill references the installation of the official
@cipherstash/stackand@cipherstash/protect-ffiNPM packages. These are vendor-owned dependencies required for the skill's encryption functionality. - [DATA_EXFILTRATION]: Documentation identifies connections to official vendor infrastructure, including
cipherstash.comfor registration and a dedicated Token Service (CTS) endpoint onviturhosted.netfor identity-aware encryption. These are standard operational requirements for the SDK. - [CREDENTIALS_UNSAFE]: The file correctly identifies necessary environment variables for authentication (e.g.,
CS_CLIENT_KEY,CS_CLIENT_ID). These are presented as placeholders for users to configure their own credentials and do not contain hardcoded secrets.
Audit Metadata