api-endpoints
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured instructions for API development using recognized libraries like
@hono/zod-openapi. - [SAFE]: It emphasizes security best practices, including mandatory authentication (
PROTECTED_SECURITY) and per-organization rate limiting (createTierRateLimiter). - [SAFE]: Instructions include clear guidance on data validation using Zod schemas to ensure request integrity and provide clear metadata for AI agents.
- [SAFE]: The workflow requires generating and committing manifest files (
openapi.json,mcp.json), which facilitates security reviews of new API surfaces. - [SAFE]: No evidence of prompt injection, data exfiltration, obfuscation, or unauthorized remote code execution was found.
Audit Metadata