twilio
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate technical resource for Twilio integration. It provides expert-level architectural guidance and production-ready code examples.
- [SAFE]: Secret management follows best practices, instructing users to use environment variables (
process.env.TWILIO_ACCOUNT_SID) instead of hardcoding credentials, which is specifically flagged as an anti-pattern in the documentation. - [SAFE]: Security is proactively addressed with a dedicated 'Risk Documentation' section and an 'Anti-Patterns' section that covers common vulnerabilities like unvalidated webhooks and insecure credential storage.
- [SAFE]: All external references point to official documentation (twilio.com, segment.com) or trusted community resources. The author's context ('theneoai') matches the provided vendor information.
- [SAFE]: Compliance checklists for HIPAA, GDPR, and TCPA are detailed and encourage secure handling of PII (Personally Identifiable Information) and PHI (Protected Health Information).
Audit Metadata