rails-architecture
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and code examples for architectural patterns (Service Objects, Query Objects, Presenters, etc.) without any executable code that could pose a risk.
- [SAFE]: The skill explicitly encourages security best practices, such as using authorization policies (via Pundit/Action Policy) and ensuring strict multi-tenant isolation by always scoping database queries through an account or user context.
- [SAFE]: Input handling examples include sanitization of search terms to prevent SQL injection (e.g., in
VendorSearchQuery). - [SAFE]: Error handling guidelines include a checklist item to ensure sensitive data is not exposed in error messages or logs.
- [SAFE]: No obfuscation, unauthorized network operations, or remote code execution patterns were found in any of the skill files.
Audit Metadata