tanstack-start-api-routes
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides educational content for developing web endpoints using the TanStack Start framework.
- [SAFE]: Secret management follows best practices by utilizing environment variables (
process.env.STRIPE_SECRET_KEY) rather than hardcoding credentials. - [SAFE]: The webhook example includes cryptographic signature verification (
stripe.webhooks.constructEvent), which is a critical security measure to prevent unauthorized requests. - [SAFE]: The documentation includes a 'Best Practices' section explicitly advising on input validation and error handling.
Audit Metadata