prowler-api
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No malicious behaviors detected. The skill consists entirely of reference documentation and architectural guidelines for developers or agents.
- [SAFE] (SAFE): Security best practices are correctly emphasized in
references/production-settings.md, including the mandatory use of environment variables for secrets and the enforcement of HTTPS and secure cookie attributes. - [SAFE] (SAFE): In
assets/security_patterns.py, the skill provides a comparison between secure and insecure coding practices. Vulnerable patterns, such as the dynamic task execution shown insend_task_bad, are clearly flagged as hazardous and should not be used in production. - [SAFE] (SAFE): Configuration references in
references/configuration.mdproperly handle sensitive information by utilizingenviron.Env()to load credentials from the environment rather than hardcoding them.
Audit Metadata