hubspot-integration
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a reference for HubSpot API integration and does not contain any malicious instructions or hidden code.
- [CREDENTIALS_SAFE]: Code templates correctly demonstrate the use of environment variables (e.g.,
process.env.HUBSPOT_CLIENT_SECRET) to manage sensitive tokens rather than hardcoding them. - [DATA_EXPOSURE]: Includes a robust example for webhook signature validation using HMAC SHA-256 and timestamp verification to prevent replay attacks.
- [EXTERNAL_DOWNLOADS]: References official and well-known SDKs for HubSpot integration, specifically
@hubspot/api-clientfor Node.js and thehubspotlibrary for Python.
Audit Metadata