building-api-clients
Pass
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides a standard architectural pattern for API integration. It includes robust input and output validation via Zod, which is a key security measure against data corruption and unexpected schema changes.
- [DATA_EXPOSURE]: The implementation uses environment variables (e.g.,
env.NEXT_PUBLIC_API_URL) for base URLs and follows standard fetch practices. There are no hardcoded credentials or sensitive file accesses detected. - [REMOTE_CODE_EXECUTION]: No remote code execution patterns were found. The skill describes standard development tasks like codegen using Orval, which is a well-known industry tool.
- [PROMPT_INJECTION]: The instructions are focused on architectural consistency and do not attempt to bypass agent safety filters or override system instructions.
Audit Metadata