integration-development
Provides guidance for creating OAuth-based integrations in the Orient codebase, covering the full integration lifecycle.
Install this skill
Security score
The integration-development skill was audited on Feb 12, 2026 and we found 12 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 104 | const authUrl = `${baseUrl}?code_challenge=${codeChallenge}&code_challenge_method=S256`; |
Template literal with variable interpolation in command context
| 120 | Authorization: `Bearer ${this.accessToken}`, |
Template literal with variable interpolation in command context
| 127 | throw new Error(`GraphQL error: ${result.errors[0].message}`); |
Template literal with variable interpolation in command context
| 137 | const response = await fetch(`${this.apiUrl}${endpoint}`, { |
Template literal with variable interpolation in command context
| 140 | Authorization: `Bearer ${this.accessToken}`, |
Template literal with variable interpolation in command context
| 149 | throw new Error(`API error: ${error.message}`); |
Webhook reference - potential data exfiltration
| 211 | - name: SERVICE_WEBHOOK_SECRET |
Webhook reference - potential data exfiltration
| 212 | description: Webhook signing secret (optional) |
Webhook reference - potential data exfiltration
| 213 | category: webhook |
Webhook reference - potential data exfiltration
| 217 | ## Webhook Support |
Webhook reference - potential data exfiltration
| 219 | For integrations that support webhooks: |
Webhook reference - potential data exfiltration
| 222 | webhooks: |