encore-auth
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security risks detected. The skill contains documentation, code snippets, and architectural guidelines for authentication handlers in Encore.ts. No evidence of prompt injection, data exfiltration, or malicious persistence was found.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references the 'jose' library (for JWT) and official 'encore.dev' packages. These are trusted dependencies for the stated purpose of the skill.
- [CREDENTIALS_UNSAFE] (SAFE): The skill correctly demonstrates using a configuration secret manager ('encore.dev/config') instead of hardcoding API keys or secrets.
Audit Metadata