astro-content
Pass
Audited by Gen Agent Trust Hub on Apr 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill provides implementation templates for Astro content management that adhere to industry security standards and best practices.
- [EXTERNAL_DOWNLOADS]: Code templates include the use of the
fetchAPI within custom loaders to retrieve structured content from remote endpoints. This is a core feature of the Astro Content Layer and is presented with secure design patterns. - [SAFE]: The skill correctly implements secret management by demonstrating the use of environment variables (
import.meta.env) for API authentication rather than hardcoding credentials. - [SAFE]: The skill addresses data ingestion security through a structured approach: 1. Ingestion points: local Markdown/JSON files and remote API data. 2. Boundary markers: Zod schema definitions are mandated for every collection. 3. Capability inventory: Data is processed for static site generation and rendered to HTML; no unsafe dynamic evaluation is performed on the content. 4. Sanitization: Zod validation ensures all ingested data matches the expected schema and types.
Audit Metadata