security-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard, well-documented security implementation patterns for Node.js/Express applications following OWASP guidelines.
- [EXTERNAL_DOWNLOADS]: Refers to official documentation and community-trusted resources including OWASP, Helmet.js, and the Shieldfy API security checklist.
- [CREDENTIALS_UNSAFE]: Contains example secret keys and environment variables (e.g., Stripe test keys, SendGrid placeholders). These are explicitly marked as illustrative examples, and the skill includes clear warnings against committing real secrets to version control.
Audit Metadata