fastify-best-practices
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides code templates and architectural guidance for developers using Fastify. It does not include executable code or scripts that perform operations on the host environment.
- [SAFE]: The instructions emphasize strong security practices, recommending the use of @fastify/helmet for security headers and @fastify/rate-limit for protecting endpoints.
- [SAFE]: Configuration rules advocate for using environment variables and validated schemas (env-schema) to avoid hardcoded secrets or credentials.
- [SAFE]: The skill includes deployment best practices, such as running Docker containers with non-root users and implementing graceful shutdowns.
- [SAFE]: All external libraries and plugins referenced are official Fastify packages or well-known community tools, posing no risk of malicious dependency injection.
Audit Metadata