trigger-dev
Enables the creation of reliable background jobs in serverless environments, handling long-running tasks and asynchronous processing.
Install this skill
or
72/100
Security score
The trigger-dev skill was audited on May 12, 2026 and we found 8 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 50
Template literal with variable interpolation in command context
SourceSKILL.md
| 50 | if (!order) throw new Error(`Order ${payload.orderId} not found`); |
medium line 81
Template literal with variable interpolation in command context
SourceSKILL.md
| 81 | await sendSlackMessage("#reports", `Daily: ${stats.count} orders, $${stats.sum}`); |
medium line 6
Webhook reference - potential data exfiltration
SourceSKILL.md
| 6 | scheduled jobs, webhook handlers, and event-driven workflows with automatic |
medium line 27
Webhook reference - potential data exfiltration
SourceSKILL.md
| 27 | You are an expert in Trigger.dev, the open-source background jobs platform for TypeScript. You help developers build reliable long-running tasks, scheduled jobs, webhook handlers, and event-driven wor |
low line 64
Webhook reference - potential data exfiltration
SourceSKILL.md
| 64 | // Step 3: Wait for webhook confirmation (durable wait) |
medium line 125
Webhook reference - potential data exfiltration
SourceSKILL.md
| 125 | ### Webhook Handler |
low line 130
Webhook reference - potential data exfiltration
SourceSKILL.md
| 130 | export const handleStripeWebhook = task({ |
low line 131
Webhook reference - potential data exfiltration
SourceSKILL.md
| 131 | id: "stripe-webhook", |
Scanned on May 12, 2026
View Security DashboardGitHub Stars 10
Rate this skill
Categorydevelopment
UpdatedMay 13, 2026
frontenddesignstripeapitestingdevopsbackendbackend-developerdevops-sreproduct-managerdevelopmentproduct
TerminalSkills/skills