twilio-webhooks
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: Signature verification is correctly implemented across all examples using either the official Twilio SDK or manual HMAC-SHA1 logic with timing-safe comparisons to prevent timing attacks.
- [EXTERNAL_DOWNLOADS]: The skill recommends installing standard, well-known dependencies (such as
twilio,express, andfastapi) from official package registries like NPM and PyPI. - [COMMAND_EXECUTION]: The documentation includes instructions for running the author's official CLI utility (
hookdeck-cli) and standard development servers to facilitate local testing and tunneling.
Audit Metadata