better-auth-best-practices
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSNO_CODE
Full Analysis
- EXTERNAL_DOWNLOADS (MEDIUM): The skill references 'npx @better-auth/cli@latest' for database migrations and schema generation. Using npx fetches and executes code from the npm registry at runtime. As the '@better-auth' scope is not on the pre-approved list of trusted organizations, this constitutes an unverifiable dependency risk.
- NO_CODE (SAFE): The skill consists entirely of markdown documentation without any accompanying executable scripts (e.g., Python or JavaScript files), which significantly limits the direct execution of malicious logic.
Audit Metadata