auth-implementation
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides detailed implementation guides for industry-standard authentication libraries and frameworks such as Auth.js, Better Auth, Lucia, and Passport.js.
- [SAFE]: Code snippets consistently promote secure-by-default configurations, including the use of memory-hard hashing algorithms (argon2id, bcrypt), secure session management, and robust CSRF protection.
- [SAFE]: The skill includes an extensive security checklist (SECURITY-CHECKLIST.md) that educates the user on NIST password guidelines, XSS prevention, and account lockout mechanisms.
- [SAFE]: The skill handles sensitive data appropriately by instructing users to use environment variables for secrets and HttpOnly cookies for token storage.
- [SAFE]: No malicious patterns, prompt injections, or unauthorized data access techniques were detected within the skill's instructions or reference files.
Audit Metadata