convex
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as an educational and technical reference guide for integrating the Convex platform into web applications. The code provided consists of transparent, well-documented TypeScript templates.
- [SAFE]: Integration examples for external services such as OpenAI, Stripe, Clerk, and Auth0 reference official and trusted providers. Network operations are restricted to these legitimate API endpoints.
- [SAFE]: Authentication and authorization patterns are emphasized throughout the templates, including best practices for protecting server-side functions and managing user identities.
- [SAFE]: Sensitive configuration data, such as API keys and database URLs, is correctly handled through environment variables and placeholders rather than hardcoded secrets.
- [SAFE]: No evidence of prompt injection, code obfuscation, unauthorized privilege escalation, or persistence mechanisms was found in any of the skill's files.
Audit Metadata