sanity-cms
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified. The skill follows best practices for CMS integration.
- [EXTERNAL_DOWNLOADS]: Fetches official Sanity packages and utilities from the npm registry (e.g.,
sanity,@sanity/client). These are well-known resources for the described functionality. - [COMMAND_EXECUTION]: Provides commands for project initialization and deployment (
npm create sanity,npx sanity deploy). These are standard operational procedures for the Sanity platform. - [CREDENTIALS_UNSAFE]: Properly instructs the user to store sensitive API tokens in environment variables (
SANITY_TOKEN) rather than hardcoding them in the source code.
Audit Metadata