polar-testing
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses safe development practices by instructing users to manage sensitive credentials like API tokens and webhook secrets through environment variables rather than hardcoding them.
- [SAFE]: No hardcoded credentials or sensitive information exposure was detected. The code examples use clearly marked placeholders (e.g.,
pat_sandbox_xxx,whsec_sandbox_xxx) and standard public testing data, such as Stripe test card numbers. - [SAFE]: All external references and domains mentioned (e.g.,
polar.sh,ngrok.io,github.com) are legitimate services associated with the skill's primary purpose of payment integration and development workflow testing. - [SAFE]: The suggested software packages and SDKs (@polar-sh/sdk, polar-sdk) are official tools provided by the vendor.
Audit Metadata