security-checklist
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a defensive resource, offering checklists and code examples for securing web applications against common threats like SQL injection and cross-site scripting (XSS).
- [SAFE]: All external references target established security organizations and tools (OWASP, Mozilla Observatory, SSL Labs) for informational purposes.
- [SAFE]: Hardcoded credentials in the code snippets are explicitly marked as examples of insecure practices and use dummy values (e.g., 'sk_live_abc123'), which do not represent a security risk.
- [SAFE]: Potentially dangerous functions like 'pickle.loads' are correctly identified as vulnerabilities in an educational context to discourage their use with untrusted data.
Audit Metadata