stash-encryption
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the installation of official CipherStash Node.js packages, including
@cipherstash/stackand the native module@cipherstash/protect-ffi. These are standard dependencies for the SDK. - [DATA_EXFILTRATION]: The skill identifies the CipherStash Token Service (CTS) endpoint used for secure JWT exchange. This is a documented vendor-operated service for identity-aware encryption.
- [CREDENTIALS_UNSAFE]: Documentation provides instructions for setting up environment variables for authentication. The skill correctly utilizes descriptive placeholders rather than hardcoded credentials.
Audit Metadata