vtex-io-application-performance
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill documents best practices for VTEX IO Node and .NET services with a strong emphasis on security and data integrity.
- [SAFE]: It mandates strict tenant isolation by requiring developers to include
accountandworkspacecontext in all in-memory cache keys, preventing cross-tenant data leaks in shared-process environments. - [SAFE]: It enforces data integrity for financial paths by requiring that VBase writes for idempotency and transaction state must be awaited, preventing silent failures that could lead to duplicate charges.
- [SAFE]: It explicitly prohibits the caching of real-time transactional state (e.g., order forms, cart simulations, and payments) to prevent the serving of stale business data and ensure transaction accuracy.
- [SAFE]: It provides guidance on sensitive data handling, specifically warning against logging secrets and recommending the redaction of sensitive data when using the platform logger.
- [SAFE]: All external references and documentation links point to official VTEX developer resources.
Audit Metadata