Skills
skills/finsilabs/awesome-ecommerce-skills/account-security/Gen Agent Trust Hub

account-security

Pass

Audited by Gen Agent Trust Hub on Mar 16, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill focuses on implementing industry-standard security measures such as rate limiting, secure password hashing (Argon2id), TOTP-based MFA, and secure session management.
  • [EXTERNAL_DOWNLOADS]: The skill recommends installing well-known and trusted security plugins for WooCommerce (Wordfence, Limit Login Attempts Reloaded, Nextend Social Login) and Shopify apps (Oxi Social Login). These are reputable services in the e-commerce ecosystem.
  • [COMMAND_EXECUTION]: No dangerous command execution or subprocess spawning was detected. Code snippets provided are for standard application logic in Node.js/TypeScript.
  • [DATA_EXFILTRATION]: No evidence of hardcoded credentials or unauthorized data transmission was found. The code correctly uses environment variables for sensitive configuration like Redis connections.
  • [INDIRECT_PROMPT_INJECTION]: While the skill handles untrusted user input (login credentials), it provides robust guidance on sanitization, normalization, and secure comparison to prevent common injection attacks.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 16, 2026, 12:39 PM