appsec-expert
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Data Exposure & Exfiltration (SAFE): The skill contains example strings for credentials (AWS, Stripe, Postgres) within a section specifically teaching developers NOT to hardcode secrets. These strings are well-known placeholders or generic example values and do not constitute a leak of sensitive information.
- External Downloads & Dependencies (SAFE): The documentation references standard, reputable security tools and libraries including Flask, hvac, Semgrep, and Snyk. The GitHub Actions workflow uses established marketplace actions for security auditing.
- Command Execution (SAFE): Code snippets involving system interactions (such as file path handling or CI/CD scripts) are presented as secure implementation patterns. For example, the file upload guide correctly utilizes 'secure_filename' to prevent path traversal attacks.
Audit Metadata