router-core/auth-and-guards
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides comprehensive guidance on implementing authentication and authorization using TanStack Router best practices.
- [SAFE]: It includes a robust
sanitizeRedirecthelper function designed to prevent open redirect attacks by validating that theredirectsearch parameter is a relative path. - [SAFE]: The skill features a critical security warning regarding the distinction between client-side route guards (
beforeLoad) and server-side function protection, correctly advising developers to use middleware for protecting RPC endpoints. - [SAFE]: All code examples and dependencies refer to official TanStack libraries and recognized patterns for the React ecosystem.
- [SAFE]: The skill demonstrates defensive coding practices, such as identifying when redirects are swallowed in try/catch blocks and providing the
isRedirecthelper solution.
Audit Metadata