Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [Local Development Tooling]: The skill is designed to emulate Google's OAuth services locally (on
localhost:4002). This is a standard and safe practice for developers to test their applications' authentication logic in isolated environments. - [Use of Example Credentials]: The documentation includes example client IDs and secrets, such as
GOCSPX-secret. These are clearly marked for testing purposes within the local emulator and do not expose real production credentials. - [Standard Dependency Usage]: The skill refers to
npx emulate, a standard method for running Node.js command-line tools. The examples also incorporate widely-used, reputable authentication libraries likegoogle-auth-libraryandpassport-google-oauth20. - [Secure Network Patterns]: All network requests described in the documentation target the local loopback address (
localhost) or provide instructions for mapping real Google URLs to the local emulator, which is appropriate for its stated purpose.
Audit Metadata