twinmind-security-basics
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a security documentation and implementation guide for TwinMind. It demonstrates secure practices such as using environment variables and cloud-based secret managers for API keys, implementing AES-256-GCM for data encryption, and using timing-safe comparisons for webhook verification. All external references are to the official TwinMind domain or trusted cloud providers like Google Cloud. The broad tool permissions (Bash, curl, npm) are consistent with the documented use case of verifying API health and installing standard security libraries.
Audit Metadata