user-generated-content
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes server-side presigned S3 URLs for customer photo uploads, ensuring that large media files do not transit the application server, which prevents memory-based denial-of-service attacks.
- [SAFE]: Implementation patterns include mandatory automated content moderation via AWS Rekognition with a specific confidence threshold (75) to filter NSFW content before it reaches the public-facing gallery.
- [SAFE]: The code snippets follow secure coding practices by using environment variables for sensitive infrastructure configuration and implementing verified-purchase gating for auto-approving content.
- [SAFE]: All external dependencies and platforms mentioned, such as Shopify, Loox, Okendo, and standard AWS SDK libraries, are reputable services commonly used in secure e-commerce development.
Audit Metadata