buy-now-pay-later
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Includes references to official JavaScript SDKs from Klarna (js.klarna.com) and Afterpay (js.afterpay.com). These are standard resources for rendering on-site messaging and payment widgets from well-known services.
- [REMOTE_CODE_EXECUTION]: Describes server-side API interactions with Afterpay and Stripe for checkout processing. These interactions follow standard, documented integration flows for payment service providers.
- [CREDENTIALS_UNSAFE]: The skill correctly instructs users to handle API keys and merchant secrets through environment variables and provides placeholders for user-supplied credentials. No actual secrets are exposed.
- [SAFE]: The integration logic for eligibility filtering and the UI components for installment messaging are standard e-commerce features that pose no security risk.
Audit Metadata