bloque-payments-sdk-ts
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and code examples for integrating a payment SDK from the vendor bloque-app.
- [SAFE]: Implementation instructions follow security best practices by recommending environment variables for sensitive credentials and enforcing the separation of backend and frontend credentials.
- [SAFE]: The documentation includes mandatory steps for verifying webhook signatures using HMAC-SHA256 to prevent injection or spoofing of payment events.
- [SAFE]: All identified packages (@bloque/payments, @bloque/payments-core, @bloque/payments-react) and remote assets (cdn.bloque.app) are legitimate resources owned by the skill author.
Audit Metadata