better-auth
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install several legitimate libraries from the npm registry, including
better-auth,@better-auth/passkey,@better-auth/sso, and framework-specific integrations. - [COMMAND_EXECUTION]: The documentation includes instructions for using
@better-auth/clito perform database migrations and schema generation, which is standard functionality for an authentication framework. - [CREDENTIALS_UNSAFE]: The skill correctly advises users to manage sensitive data such as
BETTER_AUTH_SECRETand database connection strings using environment variables, rather than hardcoding them. It also provides a secure method for generating secrets using OpenSSL. - [SAFE]: The security model described in the documentation (e.g., in
references/security.md) includes robust protections such as rate limiting, origin validation, and encrypted OAuth tokens. - [SAFE]: Administrative features like user impersonation and role management are documented with appropriate access control requirements, ensuring they are only available to authorized users.
Audit Metadata