Skills
skills/payram/payram-mcp/payram-widget-integration/Gen Agent Trust Hub

payram-widget-integration

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill serves as a functional reference for PayRam integration and does not contain any malicious patterns.
  • [SAFE]: External resources such as the widget script (payram-add-credit-v1.js) and API endpoints are hosted on the vendor's official domain (payram.com).
  • [SAFE]: Code examples for multiple backend frameworks (Express, Next.js, FastAPI, Laravel, Gin) correctly implement security measures like HMAC-SHA256 signature verification for webhooks to prevent spoofing.
  • [SAFE]: Sensitive data management is handled correctly in examples by referencing environment variables rather than hardcoding secrets.
  • [SAFE]: All credentials, API keys, and customer identifiers used in the documentation are non-functional placeholders.
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 03:03 PM
Security Audit — agent-trust-hub — payram-widget-integration