yn-be-developer-typescript
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a guideline for architectural patterns and does not contain executable malicious code. It explicitly promotes security best practices such as using parameterized queries with
PgFilterand validating path/query parameters (e.g.,Number.isInteger(id) && id > 0). - [DATA_EXPOSURE]: The skill mentions handling session data (
request.session.idUser) and database connections (env.pgConnection), but does so within the context of standard backend development guidelines without exposing hardcoded secrets or sensitive configuration files. - [COMMAND_EXECUTION]: While the skill references running tests via
mochaandtsx, these are standard development environment tools and are not used for unauthorized command execution or remote script fetching.
Audit Metadata