loom-auth
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides reference implementations for standard security protocols including OAuth2 (Authorization Code and PKCE flows), JWT management, and Session management using Redis.
- [SAFE]: Hardcoded credentials are used as placeholders (e.g., CLIENT_ID, CLIENT_SECRET, PRIVATE_KEY) for educational purposes and do not represent actual secrets.
- [SAFE]: The skill promotes security best practices, such as using Argon2id for password hashing, implementing token rotation, and enforcing strict session security (httpOnly, secure cookies).
Audit Metadata