tahr-test-authentication
Pass
Audited by Gen Agent Trust Hub on Jul 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured guidance for security testing of authentication workflows (MFA, OAuth, SAML, session management). It emphasizes safe testing practices, such as using disposable accounts and avoiding destructive actions.
- [SAFE]: The skill explicitly instructs the user not to persist sensitive data: 'Never persist raw passwords, cookies, bearer/refresh tokens, authorization codes, reset/magic links, OTPs, SAML assertions, passkey material, secrets, or PII.'
- [SAFE]: The instructions mandate scope verification and user authorization before any network requests are made, reducing the risk of unauthorized active scanning.
Audit Metadata