auth0-mfa
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive documentation and implementation examples for Auth0 Multi-Factor Authentication (MFA), including tenant configuration via official CLI tools and dashboard settings.
- [SAFE]: Backend validation examples for Node.js (Express) and Python (Flask) utilize established libraries such as express-jwt and PyJWT, following best practices for verifying JWT signatures, issuers, and audiences.
- [SAFE]: Frontend implementation patterns for React, Next.js, Vue, and Angular correctly leverage official Auth0 SDKs to handle authentication flows and session-based verification claims.
- [SAFE]: The skill uses clear placeholders (e.g., YOUR_DOMAIN, MGMT_TOKEN) for all sensitive configuration data, ensuring users are guided toward secure secret management practices.
- [SAFE]: Configuration and deployment commands for Auth0 Actions and MFA policies utilize the official Auth0 CLI, consistent with legitimate developer workflows for the specified author context.
Audit Metadata