security-auditor
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive defensive guidance and instructional templates for security audits.
- [SAFE]: Examples of sensitive data handling, such as JWT creation and cookie configuration, follow established security standards and do not contain hardcoded credentials.
- [SAFE]: References to external Node.js packages and CLI tools (e.g., zod, bcryptjs, DOMPurify) are limited to well-known, trusted libraries used for application hardening.
- [SAFE]: The skill correctly identifies protected file patterns (like .env and auth.ts) that should be handled with caution during a code review.
Audit Metadata