appwrite-ruby
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses environment variables (e.g., ENV['APPWRITE_API_KEY']) to handle sensitive credentials, which is a standard security best practice to avoid hardcoding secrets.
- [SAFE]: The installation instructions (gem install appwrite) refer to the official Appwrite Ruby SDK package.
- [SAFE]: The Server-Side Rendering (SSR) authentication section demonstrates secure session management by setting recommended cookie flags, including httponly, secure, and same_site: :strict to protect against cross-site scripting (XSS) and cross-site request forgery (CSRF).
- [SAFE]: The documentation includes a critical security section on 'Permissions & Roles' that explicitly warns developers about common mistakes, such as granting excessive privileges (e.g., Role.any with write access) or accidentally making sensitive data public.
Audit Metadata