roblox-oauth
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security vulnerabilities were detected. The skill follows industry best practices for OAuth 2.0 implementations.
- [SAFE]: The instructions explicitly warn against insecure practices, such as exposing client secrets in public code or skipping PKCE for public clients.
- [SAFE]: All referenced endpoints (e.g., apis.roblox.com) are official Roblox services and are documented neutrally.
- [SAFE]: The skill includes guidance on using helper endpoints like token/introspect and token/resources to verify authorization state correctly.
Audit Metadata