two-factor-authentication-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and implementation patterns for the Better Auth ecosystem, which is a recognized authentication framework.
- [COMMAND_EXECUTION]: The skill includes instructions to run
npx @better-auth/cli migratefor database schema updates. This is a standard operation for the referenced library and does not involve arbitrary or hidden commands. - [EXTERNAL_DOWNLOADS]: References to Node.js packages like
better-authandreact-qr-codeare standard dependencies for the described functionality and are sourced from the official npm registry. - [DATA_EXFILTRATION]: No evidence of data exfiltration was found. The skill correctly demonstrates secure handling of sensitive data such as TOTP secrets and backup codes by recommending encryption at rest.
Audit Metadata