api-authentication
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill provides static documentation and educational code examples. No malicious patterns detected.
- [CREDENTIALS_UNSAFE] (SAFE): All examples use standard placeholders like 'your-api-key-here', environment variable references like 'process.env.JWT_SECRET', or dynamic variables like '${clientId}' instead of hardcoded secrets.
- [REMOTE_CODE_EXECUTION] (SAFE): The skill does not contain instructions to download or execute code from untrusted remote sources. Code blocks are provided for user implementation only.
- [DATA_EXFILTRATION] (SAFE): Network calls demonstrated in the snippets are standard OAuth 2.0 and API authentication flows (e.g., token exchange) and do not target unauthorized third-party domains.
Audit Metadata