express
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides industry-standard security practices for Express.js applications.
- [SAFE]: The skill promotes the use of security-focused middleware, specifically 'helmet' for HTTP headers and 'express-rate-limit' to mitigate brute-force and DoS attacks.
- [SAFE]: It includes robust input validation patterns using the 'zod' library, which effectively sanitizes incoming request data and prevents injection vulnerabilities.
- [SAFE]: The error handling patterns correctly prevent the exposure of sensitive system information, such as stack traces, to external clients.
- [SAFE]: Authentication examples use standard environment variable patterns (e.g., process.env.JWT_SECRET) rather than hardcoding credentials.
Audit Metadata