sast-hardcodedsecrets
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill implements a legitimate Static Application Security Testing (SAST) workflow for identifying sensitive information disclosure.
- [SAFE]: It includes logic to differentiate between client-side and server-side codebases, reducing noise from secrets that are not publicly reachable.
- [SAFE]: The instructions mandate the partial redaction of discovered secrets in all output files, following security best practices.
- [NO_CODE]: The skill consists entirely of markdown-based instructions and templates without any accompanying executable scripts or binaries.
Audit Metadata