payment-provider-framework
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides architectural guidance for building payment integrations on the VTEX platform. It relies on official VTEX documentation (developers.vtex.com, help.vtex.com) and standard platform builders.
- [SAFE]: The instructions explicitly mandate the use of
SecureExternalClientandsecureProxywhen handling card data to ensure PCI DSS compliance. This is a security best practice for the intended use case. - [SAFE]: Dependencies identified, such as
@vtex/payment-providerand@vtex/api, are official platform libraries provided by the vendor (VTEX). - [SAFE]: No malicious patterns such as prompt injection, data exfiltration to unauthorized domains, or obfuscation were detected. All external references point to trusted vendor-controlled infrastructure.
Audit Metadata