headless-bff-architecture
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill exclusively promotes security best practices for VTEX integrations, focusing on preventing the exposure of sensitive credentials such as VTEX_APP_KEY, VTEX_APP_TOKEN, and VtexIdclientAutCookie.
- [SAFE]: It provides clear architectural constraints that mandate server-side handling of private APIs and authentication tokens, effectively mitigating risks of data exposure in client-side code.
- [SAFE]: Code examples include essential security measures such as input validation using regular expressions, secure cookie configurations (httpOnly, secure, sameSite), and redaction of sensitive headers in logs to prevent accidental data leaks.
Audit Metadata