secure-code-guardian
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides defensive coding instructions and security-focused code snippets for Node.js/TypeScript environments.
- [SAFE]: Instructions correctly emphasize the use of parameterized queries to prevent SQL injection, bcrypt for password hashing, and secure header configurations via Helmet.
- [SAFE]: Dependencies referenced (such as bcrypt, jsonwebtoken, zod, helmet, express-rate-limit, cors, and dompurify) are standard, reputable libraries for their respective tasks.
- [SAFE]: The skill explicitly warns against dangerous practices like using
exec()with user input, storing passwords in plaintext, or trusting unvalidated data.
Audit Metadata