python-backend
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): The skill is purely instructional and contains high-quality code snippets for building secure backends. No prompt injection, data exfiltration, or malicious execution patterns were detected.
- [CREDENTIALS_UNSAFE] (INFO): Code examples use clearly marked placeholders for secrets (e.g., 'change-me', '<QSTASH_TOKEN>', 'current_signing_key="..."'). This is standard practice for documentation and does not constitute a vulnerability.
- [EXTERNAL_DOWNLOADS] (INFO): The skill references reputable, industry-standard Python libraries from official registries. No suspicious or unverified third-party dependencies are requested.
- [COMMAND_EXECUTION] (SAFE): No arbitrary command execution or shell injection risks were found. The examples provided use standard library and framework-recommended methods for subprocess management where applicable.
Audit Metadata