Skills
skills/farmage/opencode-skills/nestjs-expert/Gen Agent Trust Hub

nestjs-expert

Pass

Audited by Gen Agent Trust Hub on Mar 24, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides structured guidance on implementing authentication and authorization using industry-standard tools like Passport.js and JWT.
  • [SAFE]: Instructions explicitly forbid hardcoding credentials or secrets, instead mandating the use of the NestJS ConfigModule for environment variable management.
  • [SAFE]: The skill enforces input validation using class-validator and DTOs, which is a key defense against injection and malformed data attacks.
  • [SAFE]: No evidence of prompt injection, data exfiltration, or unauthorized command execution was found across the skill files and references.
  • [SAFE]: A minor documentation issue was noted where a hardcoded local file path from the author's development environment (/Users/dmitry/...) was left in a reference guide, but this does not pose a security risk to the end user.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 24, 2026, 01:36 AM