stripe-billing
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were identified in this skill.
- [PROMPT_INJECTION]: The instructions are strictly focused on developer assistance for Stripe integration and contain no bypass or override attempts.
- [CREDENTIALS_UNSAFE]: The code snippets use environment variables (e.g., process.env.STRIPE_SECRET_KEY) instead of hardcoding sensitive API keys.
- [EXTERNAL_DOWNLOADS]: The skill uses the official 'stripe' package from npm, which is a well-known and trusted dependency.
- [DATA_EXFILTRATION]: No unauthorized data transmission or sensitive file access patterns were found.
- [REMOTE_CODE_EXECUTION]: The skill does not perform any dynamic code evaluation or remote script execution.
Audit Metadata