auth-nodejs-cloudbase
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the installation of the
@cloudbase/node-sdkpackage via npm. This is an official vendor resource from 'tencentcloudbase' and is considered a safe and expected dependency for this skill. - [SAFE]: Includes strong security recommendations for handling sensitive data, such as advising against hardcoding values, using environment variables, and ensuring private keys like
tcb_custom_login.jsonare never exposed in client-side code. - [SAFE]: Implementation patterns for authentication correctly identify CloudBase UIDs as the primary key for authorization decisions, discouraging reliance on less secure or platform-specific identifiers like openId.
Audit Metadata