eve-fullstack-app-design
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a documentation and design guide for the Eve Horizon platform, providing instructions on service topology and manifest authoring.
- [SAFE]: Promotes secure practices such as using platform-managed secrets via interpolation (${secret.KEY}) and explicitly warns against storing secrets in environment variables or code.
- [SAFE]: References vendor-specific scoped packages (@eve-horizon/auth and @eve-horizon/auth-react) for implementing authentication, which aligns with standard development practices for the described ecosystem.
- [SAFE]: The CLI commands documented (e.g., eve db migrate, eve env deploy) are contextually appropriate for the platform's operational management and do not exhibit suspicious behavior.
- [SAFE]: Encourages the use of Row Level Security (RLS) and managed database roles, which are positive security features for application architecture.
Audit Metadata