stripe-setup
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified in the skill. The integration flow uses standard OAuth and webhook configuration steps.
- [EXTERNAL_DOWNLOADS]: The instructions involve the use of npx affitor, which downloads the author's own utility from the NPM registry. This is a legitimate vendor resource.
- [COMMAND_EXECUTION]: The skill uses shell commands like npx affitor setup stripe to automate the configuration of Stripe webhooks. These commands interact with the vendor's CLI and do not perform unauthorized system modifications.
Audit Metadata