clerk-backend-apis
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill provides technical guidance and code snippets for robust authentication and authorization.
- [CREDENTIALS_UNSAFE]: The skill emphasizes the safe management of credentials, specifically instructing users to keep 'CLERK_SECRET_KEY' in server-side environment variables and never to expose Backend API credentials to browser code.
- [EXTERNAL_DOWNLOADS]: The skill references official and well-known Clerk libraries (e.g., @clerk/express, Fastify plugins, Go SDK) but does not include any automated download or execution logic. All references are documented neutrally as implementation requirements.
- [DATA_EXFILTRATION]: There are no patterns involving the exfiltration of sensitive data. The skill focuses on secure identity derivation and resource authorization within a server environment.
Audit Metadata