auth-security

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill serves as a comprehensive security reference and template library for modern authentication standards. It correctly implements security protocols like RFC 9700 (OAuth 2.1), emphasizing PKCE for all clients and single-use refresh tokens.- [REMOTE_CODE_EXECUTION]: No suspicious execution patterns detected. The code snippets rely on established libraries such as 'jose' and the built-in 'crypto' module for cryptographic operations.- [DATA_EXFILTRATION]: Network activity is limited to legitimate authentication flows, such as exchanging authorization codes for tokens and fetching public keys from a JWKS endpoint. No unauthorized data exfiltration patterns were found.- [CREDENTIALS_UNSAFE]: The templates demonstrate best practices for secret management, using placeholders and environment variables rather than hardcoded sensitive data.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 03:58 PM
Security Audit — agent-trust-hub — auth-security