fastapi
Pass
Audited by Gen Agent Trust Hub on May 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a comprehensive reference for FastAPI. It adheres to secure coding standards and does not contain any malicious patterns such as prompt injection, data exfiltration, or unauthorized command execution.
- [SAFE]: External dependencies and installation instructions refer to standard, well-known packages in the Python and FastAPI ecosystem (e.g., fastapi, sqlmodel, pydantic-settings, pyjwt). All mentioned packages are legitimate tools for the stated purpose.
- [SAFE]: Security documentation within the skill (references/security.md) correctly emphasizes best practices, such as never storing plaintext passwords, using Argon2 for hashing via pwdlib, implementing token expiration, and using secrets.compare_digest() to prevent timing attacks.
Audit Metadata