eve-fullstack-app-design
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a comprehensive design guide for the Eve Horizon platform, promoting architectural patterns that align with security best practices.
- [SAFE]: It explicitly recommends and provides templates for Row-Level Security (RLS) to ensure multi-tenant data isolation, using transaction-scoped session variables (
set_config). - [SAFE]: The skill encourages the use of platform-managed secret management via manifest interpolation (
${secret.KEY}), which prevents the hardcoding of sensitive credentials in source code or configuration files. - [SAFE]: Dockerfile templates follow industry standard security practices, such as employing non-root users (
node), utilizing multi-stage builds to reduce attack surface, and implementing health checks for service monitoring. - [EXTERNAL_DOWNLOADS]: The skill references legitimate, vendor-controlled Docker images (e.g.,
public.ecr.aws/w7c4v0w3/eve-horizon/migrate:latest) required for platform functionality like database migrations.
Audit Metadata