Skills
skills/contentstack/contentstack-agent-skills/developer-hub-app-architect/Gen Agent Trust Hub

developer-hub-app-architect

Pass

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill identifies and references the official Contentstack Marketplace App Boilerplate (github.com/contentstack/marketplace-app-boilerplate) as the authoritative template for building applications. This is a legitimate resource provided by the vendor.
  • [SAFE]: The instructions incorporate strong security defaults that explicitly forbid the exposure of OAuth client secrets, app signing keys, or other sensitive credentials in frontend code or configuration.
  • [SAFE]: The implementation guidance advocates for the use of the Contentstack API proxy for external integrations. This pattern ensures that API keys are managed through server-side variables and are never directly accessible to the client browser.
  • [SAFE]: The skill emphasizes operational safety by requiring the agent to validate installation scopes and avoid requesting broader permissions than necessary for the app's functionality.
Audit Metadata
Risk Level
SAFE
Analyzed
May 4, 2026, 03:27 PM