configuring-better-auth
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill instructs the user to add an MCP server from 'https://mcp.chonkie.ai'. This domain is not on the trusted source list. Although the reference is consistent with the skill's primary purpose for Better Auth assistance, the source is unverified.
- [COMMAND_EXECUTION] (SAFE): The verification script 'scripts/verify.py' is limited to checking for the existence of local documentation files and does not execute dangerous system commands or network requests.
- [PROMPT_INJECTION] (SAFE): No instructions designed to override agent safety filters or extract system prompts were detected in the skill markdown or metadata.
- [DATA_EXFILTRATION] (SAFE): No patterns for exfiltrating sensitive files or credentials were found. The code snippets appropriately use environment variables and follow security best practices like PKCE and httpOnly cookies.
Audit Metadata