ai-gateway
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [Secure Authentication Patterns]: The skill emphasizes the use of OIDC (OpenID Connect) via the
VERCEL_OIDC_TOKEN, which allows for short-lived, automatically managed authentication tokens rather than relying on static, long-lived API keys. - [Official Resource Integration]: All referenced documentation, package repositories, and API endpoints belong to trusted Vercel domains (
vercel.com,ai-sdk.dev, andgithub.com/vercel), ensuring that the skill operates within a known and secure ecosystem. - [Configuration Validation]: Includes built-in validation patterns to detect and discourage the use of hardcoded provider-specific API keys, directing users toward more secure gateway-mediated authentication.
- [Standard Tooling]: Recommends standard project management commands like
vercel env pulland official Node.js package installations, which are standard practices for developers using the Vercel platform.
Audit Metadata