security-best-practices
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive defensive guidelines for auditing multiple frameworks, including Go, Express, React, Vue, Next.js, Django, FastAPI, and Flask. Its primary purpose is to improve codebase security.
- [SAFE]: The instructions explicitly prohibit the agent from requesting, logging, or committing secrets found during audits, adhering to security best practices.
- [SAFE]: No malicious command execution, network exfiltration, or persistence mechanisms were found. All external URLs provided are for official documentation from trusted sources like MDN, OWASP, and framework maintainers.
- [SAFE]: The skill includes safety guardrails for the agent, such as requiring fixes to be minimal and recommending the use of existing testing flows to prevent regressions.
Audit Metadata