upstash-vector-js
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks detected. The skill provides legitimate documentation for the Upstash Vector service and its official SDK.
- [SAFE]: The documentation demonstrates security best practices by using environment variables (UPSTASH_VECTOR_REST_URL, UPSTASH_VECTOR_REST_TOKEN) for API authentication instead of hardcoding sensitive secrets.
- [SAFE]: The skill references the official @upstash/vector library from the vendor's own package registry entry, representing standard and safe dependency management.
- [SAFE]: The skill documents interfaces for ingesting data (ingestion points: sdk-methods.md, features/filtering-and-metadata.md). Boundary markers and sanitization are not shown in these documentation snippets, but the capabilities are limited to standard database operations (capability inventory: CRUD operations on vector index) and do not include system-level execution.
Audit Metadata