cloudflare
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a high-quality technical reference library for Cloudflare services. It consolidates information on compute, storage, security, and networking, providing clear decision trees for service selection.
- [SAFE]: All code snippets follow security best practices, such as using prepared statements for SQL (D1) to prevent injection and emphasizing proper secrets management through the Cloudflare Secrets Store and environment variables.
- [SAFE]: Network operations documented are restricted to official Cloudflare API endpoints and well-known, trusted developer services such as GitHub and esm.sh. Remote script references (e.g., Turnstile, Web Analytics) target official, trusted Cloudflare domains.
- [SAFE]: Placeholders for sensitive information (API tokens, account IDs, site keys) are used throughout the documentation, ensuring no real credentials or sensitive keys are hardcoded in the skill.
- [SAFE]: Explicit security warnings and 'gotchas' are provided for various services, such as noting that workerd is not a hardened sandbox for untrusted code, helping developers build secure applications.
Audit Metadata