secure-code-guardian
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive and correct security implementation guidance, including password hashing with bcrypt, parameterized SQL queries, and input validation using Zod. It explicitly prohibits dangerous practices such as hardcoding credentials or using string interpolation for database queries.
- [SAFE]: All referenced libraries (e.g., jsonwebtoken, helmet, express-rate-limit, dompurify) are standard, industry-recognized tools for the described security tasks. The code examples demonstrate secure configuration, such as setting httpOnly and Secure flags for cookies and implementing Content Security Policy (CSP) headers.
- [SAFE]: No obfuscation, data exfiltration patterns, or unauthorized remote code execution vectors were found. The skill maintains a clear educational and functional purpose aligned with its description.
Audit Metadata