stripe-local-dev
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The scripts utilize standard shell utilities such as sed and grep to update local configuration files and use the official stripe-cli for webhook forwarding.
- [DATA_EXFILTRATION] (SAFE): Secret synchronization is contained within the local environment or pushed to the user's own Convex instance using official tools; no unauthorized data transmission was detected.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill directs users to install the official Stripe CLI and uses npx for the Convex utility, both of which are trusted sources for their respective platforms.
- [PROMPT_INJECTION] (SAFE): The instructions are clear and descriptive, containing no attempts to override agent behavior or bypass security protocols.
Audit Metadata