mcp-oauth21-scalekit
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is instructional and focuses on implementing standard security protocols (OAuth 2.1) for MCP servers.
- [CREDENTIALS_UNSAFE]: No hardcoded credentials or unsafe secret handling were detected. The skill correctly instructs users to manage secrets like SCALEKIT_CLIENT_SECRET via environment variables, which is a standard security practice.
- [EXTERNAL_DOWNLOADS]: Mentions the Scalekit SDK and associated configuration assets for Node.js and Python frameworks. These references are vendor-owned resources that align with the skill's stated purpose.
- [COMMAND_EXECUTION]: No dangerous shell command execution patterns or privilege escalation attempts were identified.
Audit Metadata