Skills
skills/auth0/agent-skills/auth0-react/Gen Agent Trust Hub

auth0-react

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads the official Auth0 CLI installation script from Auth0's public GitHub repository (raw.githubusercontent.com/auth0/auth0-cli). This is a legitimate operation for acquiring the necessary development tools for the service.
  • [REMOTE_CODE_EXECUTION]: Includes automated scripts that execute the downloaded Auth0 CLI installer. The scripts are transparent, documented, and originate from the service provider's infrastructure.
  • [COMMAND_EXECUTION]: Provides Bash and PowerShell scripts to automate the creation of Auth0 applications and the configuration of environment variables. These scripts include protective logic, such as explicitly instructing the agent to ask for user permission before reading or writing to .env files.
  • [DATA_EXFILTRATION]: While the skill manages configuration data (Domain and Client ID), these are public identifiers required for Single Page Application (SPA) authentication flows. No private secrets or sensitive credentials are harvested or transmitted to unauthorized third parties.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 04:14 PM
Security Audit — agent-trust-hub — auth0-react