Skills
skills/rolandsmeenk/lensstudioagents/spectacles-cloud/Gen Agent Trust Hub

spectacles-cloud

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill serves as an educational and implementation guide for cloud-based lens development, providing boilerplate code and architectural patterns.
  • [EXTERNAL_DOWNLOADS]: The documentation includes an example of a serverless Edge Function that imports the @supabase/supabase-js library from esm.sh, which is a well-known CDN for JavaScript and TypeScript modules.
  • [DATA_EXFILTRATION]: The code snippets utilize fetch() and WebSocket to communicate with Supabase projects. These operations are essential to the skill's purpose of synchronizing persistent cloud data and are directed at user-defined infrastructure.
  • [CREDENTIALS_UNSAFE]: The skill uses placeholders for sensitive constants (e.g., your-anon-key). It proactively warns developers that the 'anon' key is publicly extractable and provides instructions on using Row-Level Security (RLS) and server-side Edge Functions to mitigate credential exposure.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 04:22 PM