workos-authkit-react
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill's decision tree requires fetching a README file from a remote GitHub repository ('github.com/workos/authkit-react/blob/main/README.md'). While this is for documentation purposes, it represents an external dependency that the agent must process at runtime.
- [PROMPT_INJECTION] (LOW): This skill is vulnerable to Indirect Prompt Injection (Category 8) because it ingests untrusted external data (the README) which could contain hidden instructions for the agent. Evidence: 1. Ingestion point: README fetch in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Instructions for environment variable setup and code implementation. 4. Sanitization: Absent.
- [DATA_EXFILTRATION] (SAFE): The skill follows security best practices by explicitly stating that a secret 'WORKOS_API_KEY' should not be used in the client-side React implementation, reducing the risk of credential exposure.
Audit Metadata