wf-de-embed-portal
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive and secure implementation patterns for authentication and user management.
- [SAFE]: Authentication logic uses industry-standard libraries (bcrypt, jsonwebtoken, jose) and enforces security best practices like HttpOnly/Secure cookies and salt rounds.
- [SAFE]: The skill correctly segregates application session secrets from Domo integration secrets.
- [SAFE]: Role-based access control (RBAC) is implemented in both the middleware and individual API routes.
- [SAFE]: Remote operations are limited to official Domo AppDB APIs and trusted third-party providers like Clerk or Auth0.
Audit Metadata