expressjs-rest-api
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements modern Express 5 patterns and follows security best practices by including helmet for security headers and cors for cross-origin resource sharing.
- [SAFE]: Environment variable management is handled securely using Node.js's built-in process.loadEnvFile(), with explicit instructions to exclude environment files from version control via .gitignore.
- [SAFE]: Authentication is handled via aws-jwt-verify, an official library for Cognito JWT validation, ensuring robust token verification.
- [SAFE]: The skill uses zod for strict request validation of bodies, parameters, and query strings, preventing common injection and malformed data issues in the generated application.
Audit Metadata