n8n-syntax-code-node
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a documentation resource for the n8n v1.x Code node environment, providing syntax examples and architectural guidance for developers.
- [SAFE]: Explicitly defines and enforces platform-level security restrictions (the '5 Restrictions'), such as the prohibition of filesystem access (
fs,path) and external network requests (fetch,axios) directly within the sandboxed code environment. - [SAFE]: Recommends secure credential management by instructing users to pass secrets via preceding nodes or specific n8n UI parameters rather than accessing them directly through code-level variables like
$secrets. - [SAFE]: Includes defensive warnings regarding self-hosted configuration, specifically cautioning against the use of wildcard permissions for external npm modules (
NODE_FUNCTION_ALLOW_EXTERNAL=*) or built-in modules (NODE_FUNCTION_ALLOW_BUILTIN=*) to prevent over-privileged execution environments.
Audit Metadata