clerk-nextjs-auth
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides instructional content for a legitimate third-party authentication service (Clerk) without any malicious patterns or hidden commands.
- [SAFE]: Instructions specifically warn against exposing sensitive environment variables like
CLERK_SECRET_KEYandCLERK_WEBHOOK_SIGNING_SECRETto the client side, aligning with security best practices. - [SAFE]: References to external tools such as
npx clerk@latestand the@clerk/nextjspackage are for an established and well-known service provider. - [SAFE]: The skill correctly identifies and mitigates common authentication pitfalls, such as the requirement for explicit route protection when using
clerkMiddleware().
Audit Metadata