n8n-workflow-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SECURITY BEST PRACTICES] (SAFE): The documentation actively encourages secure development. It includes specific warnings against hardcoding credentials and provides guidance on preventing SQL injection using parameterized queries.
- [INDIRECT PROMPT INJECTION] (INFO): While the skill describes patterns for handling untrusted external data (e.g., Webhooks, AI Tool outputs), it does so in an educational capacity. It provides safety-conscious architectural guidance rather than implementing unsafe data handling itself.
- [DATA EXPOSURE] (SAFE): No hardcoded secrets or sensitive paths were identified. The patterns described emphasize the use of authenticated credential managers over static secrets.
- [EXTERNAL DOWNLOADS] (SAFE): The dependencies listed refer to internal n8n MCP tools and related instructional skills rather than untrusted external scripts or remote execution endpoints.
Audit Metadata