clerk-authentication

Integrates Clerk for authentication in React and Next.js apps, managing sessions and webhooks for secure user access.

Install this skill

or

67/100

Security score

The clerk-authentication skill was audited on Mar 1, 2026 and we found 17 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 3

Webhook reference - potential data exfiltration

SourceSKILL.md

3	description: Load when integrating Clerk for authentication in React and Next.js apps. Applies when implementing auth with Next.js App Router, managing sessions, handling webhooks, or building multi-t

medium line 10

Webhook reference - potential data exfiltration

SourceSKILL.md

10	- Handling user webhooks

medium line 142

Webhook reference - potential data exfiltration

SourceSKILL.md

142	## Webhooks (User Sync)

low line 147

Webhook reference - potential data exfiltration

SourceSKILL.md

147	// app/api/webhooks/clerk/route.ts

low line 148

Webhook reference - potential data exfiltration

SourceSKILL.md

148	import { Webhook } from 'svix'

low line 150

Webhook reference - potential data exfiltration

SourceSKILL.md

150	import { WebhookEvent } from '@clerk/nextjs/server'

low line 153

Webhook reference - potential data exfiltration

SourceSKILL.md

153	const WEBHOOK_SECRET = process.env.CLERK_WEBHOOK_SECRET!

low line 163

Webhook reference - potential data exfiltration

SourceSKILL.md

163	const wh = new Webhook(WEBHOOK_SECRET)

low line 164

Webhook reference - potential data exfiltration

SourceSKILL.md

164	let event: WebhookEvent

low line 171

Webhook reference - potential data exfiltration

SourceSKILL.md

171	}) as WebhookEvent

low line 173

Webhook reference - potential data exfiltration

SourceSKILL.md

173	return new Response('Webhook verification failed', { status: 400 })

medium line 307

Webhook reference - potential data exfiltration

SourceSKILL.md

307	- [Webhooks](https://clerk.com/docs/integrations/webhooks)

low line 153

Access to .env file

SourceSKILL.md

153	const WEBHOOK_SECRET = process.env.CLERK_WEBHOOK_SECRET!

low line 304

External URL reference

SourceSKILL.md

304	- [Next.js App Router](https://clerk.com/docs/quickstarts/nextjs)

low line 305

External URL reference

SourceSKILL.md

305	- [Middleware](https://clerk.com/docs/references/nextjs/clerk-middleware)

low line 306

External URL reference

SourceSKILL.md

306	- [Organizations](https://clerk.com/docs/organizations/overview)

low line 307

External URL reference

SourceSKILL.md

307	- [Webhooks](https://clerk.com/docs/integrations/webhooks)

Scanned on Mar 1, 2026

View Security Dashboard

Install this skill with one command

/learn @telum-ai/clerk-authentication

GitHub Stars 2

Rate this skill

Categorydevelopment

UpdatedMarch 29, 2026

openclaw frontend api frontend-developer product-manager growth-pm development product