headless-checkout-proxy
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill focuses on promoting security best practices for headless commerce by requiring a server-side proxy layer for sensitive checkout operations.
- [SAFE]: Code examples demonstrate proper input validation and sanitization before forwarding data to external APIs, reducing the risk of injection or data manipulation.
- [SAFE]: Credentials and sensitive identifiers, such as the orderFormId, are managed via server-side sessions and environment variables, preventing exposure to the client-side environment.
- [SAFE]: External network requests are directed to official VTEX domains, which are consistent with the skill's stated purpose and the author's identity.
Audit Metadata