skills/jeremylongshore/claude-code-plugins-plus-skills/validating-authentication-implementations/Gen Agent Trust Hub
validating-authentication-implementations
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs legitimate security auditing tasks using local Python scripts and standard libraries. No external network connections, credential harvesting, or persistence mechanisms were detected.
- [PROMPT_INJECTION]: The skill is designed to ingest and analyze potentially untrusted authentication data, creating a surface for indirect prompt injection.
- Ingestion points:
scripts/authentication_check.py(via --config),scripts/jwt_analyzer.py(via --token or --file), andscripts/password_policy_check.py(via --config). - Boundary markers: Not explicitly defined in the instructions to differentiate data from commands.
- Capability inventory: The agent has access to Read, Write, Edit, and restricted Bash profiles (security, scan, audit).
- Sanitization: Input data is parsed using structured JSON libraries and regular expressions.
Audit Metadata