Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/hubspot-security-basics/Gen Agent Trust Hub

hubspot-security-basics

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is purely educational and focuses on implementing security best practices for HubSpot integrations. It provides templates and guidelines that align with industry standards.
  • [CREDENTIALS_UNSAFE]: No hardcoded secrets or credentials were detected. The skill correctly uses placeholders (e.g., pat-na1-xxxxxxxx-...) and explicitly instructs the user to store tokens in environment variables and exclude them from version control using .gitignore.
  • [EXTERNAL_DOWNLOADS]: The skill references official HubSpot API domains (api.hubapi.com) and documentation URLs. These are well-known services and the references are used for legitimate verification and information purposes.
  • [COMMAND_EXECUTION]: Shell command examples for secret management (using aws and gcloud CLIs) and connectivity testing (using curl) are provided as standard administrative procedures for the stated purpose of the skill.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 04:41 PM