workos-api-widgets
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): No behavior-override or safety-bypass instructions were detected.
- Data Exposure & Exfiltration (SAFE): No hardcoded secrets or unauthorized data transmission patterns were found. API key placeholders are used correctly.
- Obfuscation (SAFE): No hidden content or encoding techniques were found.
- Unverifiable Dependencies & Remote Code Execution (SAFE): Referenced SDKs and tools are standard for the integration and do not involve untrusted code execution.
- Indirect Prompt Injection (SAFE): The directive to fetch official documentation is a standard procedural step for maintaining API compatibility and does not present a malicious injection risk.
Audit Metadata