medusa-plugins
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Documentation access\n
- The skill instructs the agent to fetch content from docs.medusajs.com, which is recognized as a well-known and trusted source for Medusa framework documentation.\n- [SAFE]: Development environment\n
- Commands such as npm link, tsc, and npx medusa db:migrate are used appropriately within the context of building and testing plugins.\n- [SAFE]: Security best practices\n
- The instructions explicitly recommend using environment variables for sensitive data like API keys and provide a pre-publish checklist to prevent accidental exposure of source code or tests in npm packages.
Audit Metadata