Skills
skills/ericgrill/agents-skills-plugins/auth-implementation-patterns/Gen Agent Trust Hub

auth-implementation-patterns

Pass

Audited by Gen Agent Trust Hub on Mar 24, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides implementation guides and code snippets for authentication (JWT, Sessions, OAuth2) and authorization (RBAC, Permissions). All patterns utilize well-known, industry-standard libraries such as jsonwebtoken, bcrypt, passport, and express-session.
  • [SAFE]: Security best practices are explicitly demonstrated and encouraged, including password hashing with bcrypt, input validation using zod, and implementation of rate limiting using express-rate-limit.
  • [SAFE]: The code correctly handles sensitive data by recommending the use of environment variables (e.g., process.env.JWT_SECRET) rather than hardcoding credentials.
  • [SAFE]: Session management patterns include security flags such as httpOnly, secure, and sameSite to mitigate common web vulnerabilities like XSS and CSRF.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 24, 2026, 08:44 AM
Security Audit — agent-trust-hub — auth-implementation-patterns