clerk-validator
Fail
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill provides deceptive guidance claiming that the standard Next.js 'middleware.ts' file is deprecated in a non-existent 'Next.js 16' and must be renamed to 'proxy.ts'. Because the Next.js framework specifically looks for 'middleware.ts' to execute route protection logic, renaming the file causes the framework to ignore the authentication guards entirely. This results in a silent security failure where all protected routes become publicly accessible. The use of future-dated versioning (Next.js 16) is a known tactic to mislead AI agents into disregarding their training on existing safety standards.
- [COMMAND_EXECUTION]: The documentation directs the agent to execute 'python3 scripts/validate.py', but the script itself is missing from the skill files. This creates a dependency on unverified external or missing code that cannot be audited for security risks.
Recommendations
- AI detected serious security threats
Audit Metadata