clerk-orgs
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill provides legitimate instructions for using the Clerk SDKs and CLI for B2B organization management.
- [SAFE]: The skill includes explicit security warnings and patterns to prevent common vulnerabilities like Insecure Direct Object References (IDOR). Specifically, it mandates validating that the URL slug matches the session's active organization and binding the
orgIdfrom the server-side authentication context rather than trusting client-side input. - [COMMAND_EXECUTION]: The skill utilizes the
clerkCLI tool for programmatic organization management. This is the expected and documented behavior for the official vendor tool in this context.
Audit Metadata