Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/hubspot-observability/Gen Agent Trust Hub

hubspot-observability

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill uses process.env.HUBSPOT_ACCESS_TOKEN for authentication, adhering to secure development practices for secret management by avoiding hardcoded credentials.
  • [SAFE]: The structured logging implementation using pino includes specific redaction logic to ensure HubSpot access tokens are removed from data objects before they are written to logs.
  • [SAFE]: The skill provides instructions for monitoring and metrics collection that interact with the official HubSpot API domain (api.hubapi.com), which is consistent with its stated purpose of observability.
  • [SAFE]: The suggested dependencies are well-known, established libraries in the Node.js ecosystem (e.g., prom-client, pino, express).
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 04:41 PM