session-management
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements industry-standard session management practices. It correctly utilizes environment variables for secrets (JWT_SECRET, REFRESH_SECRET, SESSION_SECRET) rather than hardcoding credentials. It also configures secure cookie attributes such as httpOnly, sameSite, and secure flags, which are essential for mitigating XSS and CSRF attacks. No malicious patterns, prompt injections, or data exfiltration attempts were detected.
Audit Metadata