cdk-rest-api-postgres
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a robust architecture utilizing AWS CDK and Node.js best practices, ensuring a clear separation of concerns between infrastructure, handlers, controllers, and repositories.
- [SAFE]: Security is prioritized through the use of Cognito authorizers at the API Gateway level and additional group-based authorization middleware within Lambda handlers.
- [SAFE]: All database operations are performed using Drizzle ORM, which mitigates SQL injection risks through type-safe queries and parameterization.
- [SAFE]: The skill uses Zod for schema validation on all incoming request data (headers, parameters, and bodies), which prevents processing of malicious or malformed inputs.
- [SAFE]: External dependencies are limited to well-known, trusted libraries, and environment variables are used for all sensitive configuration items.
Audit Metadata