skills/jeremylongshore/claude-code-plugins-plus-skills/coderabbit-security-basics/Gen Agent Trust Hub
coderabbit-security-basics
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily instructional, offering best practices for securing API keys and implementing access controls for CodeRabbit integrations.
- [CREDENTIALS_UNSAFE]: No real secrets or credentials are hardcoded. The skill uses non-sensitive placeholders (e.g.,
sk_live_***) and correctly instructs users to use environment variables and.gitignoreto protect actual keys. - [EXTERNAL_DOWNLOADS]: References to external resources and API endpoints are limited to the official and well-known
coderabbit.comdomain for documentation and service health checks. - [DATA_EXFILTRATION]: No suspicious network activity or sensitive data access patterns were identified. Network usage is restricted to a standard health check on the official vendor API.
Audit Metadata