vtex-io-app-settings
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill focuses on promoting security best practices for VTEX IO applications. It includes specific instructions to avoid hardcoding secrets, prevent the exposure of sensitive settings to frontend code, and ensure that configuration data is properly validated at the consumption boundary.
- [SAFE]: It provides guidance on least-privilege principles by discouraging the use of broad workspace-level permissions and instead recommending standard app-settings access patterns.
- [SAFE]: The documentation and code examples serve as a defensive programming guide, highlighting common failure modes like logging secrets or using configuration storage for high-volume operational data.
- [SAFE]: External links reference official vendor documentation at
developers.vtex.com, which is consistent with the skill author's identity and the technical domain.
Audit Metadata