cloudflare-zero-trust-access
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements and documents industry-standard authentication patterns for Cloudflare Workers. It emphasizes secure secret management using Cloudflare Wrangler secrets and environment variables instead of hardcoding credentials.
- [EXTERNAL_DOWNLOADS]: The templates fetch cryptographic public keys from Cloudflare's official authentication endpoints (e.g.,
cloudflareaccess.com/cdn-cgi/access/certs). This is the standard and necessary procedure for verifying JWT signatures and does not involve downloading or executing arbitrary remote code. - [COMMAND_EXECUTION]: Includes local shell scripts (
test-access-jwt.shandcreate-service-token.sh) designed to assist developers with JWT debugging and setup guidance. These scripts perform transparent, benign operations such as string decoding and interactive console output.
Audit Metadata