backend-coding
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): No security issues were detected. The skill contains educational reference files for building secure web applications.
- CREDENTIALS_UNSAFE (SAFE): Secrets and sensitive configurations, such as the JWT secret and Redis password, are properly handled using environment variables (e.g., process.env.JWT_SECRET, process.env.REDIS_PASSWORD) rather than being hardcoded.
- EXTERNAL_DOWNLOADS (SAFE): The referenced dependencies (FastAPI, SQLAlchemy, jsonwebtoken, ioredis, TypeORM, Prisma) are reputable, standard libraries from official package registries.
- COMMAND_EXECUTION (SAFE): There are no instances of shell command execution, subprocess spawning, or dangerous system-level calls.
- PROMPT_INJECTION (SAFE): The content consists entirely of source code and technical documentation; no instructions were found that attempt to manipulate or override agent behavior.
Audit Metadata