secure
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill contains shell script snippets (e.g.,
grep -r "api_key" src/and loops usingcurl) designed for local security testing. These are intended for the user to verify their own application's security posture and do not pose a risk of unauthorized command execution. - [DATA_EXPOSURE] (SAFE): The content explicitly warns against hardcoding credentials and provides clear instructions for using environment variables and
.gitignoreto protect sensitive data. - [REMOTE_CODE_EXECUTION] (SAFE): No remote code execution patterns were detected. The skill recommends standard, well-known libraries like
bcryptandhelmet.jsfor security purposes.
Audit Metadata