rivet-sdk
Provides guidance for implementing Zoom Rivet SDK in Node.js for OAuth, webhooks, and API integrations.
Install this skill
Security score
The rivet-sdk skill was audited on May 18, 2026 and we found 13 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Webhook reference - potential data exfiltration
| 3 | description: "Reference skill for Zoom Rivet SDK. Use after routing to a Rivet-based server workflow when implementing auth handling, webhook consumers, API wrappers, multi-module composition, or Lamb |
Webhook reference - potential data exfiltration
| 11 | - "rivet webhook" |
Webhook reference - potential data exfiltration
| 24 | - Webhook event consumption |
Webhook reference - potential data exfiltration
| 41 | - Rivet SDK is a Node.js framework that bundles Zoom auth handling, webhook receivers, and typed API wrappers. |
Webhook reference - potential data exfiltration
| 45 | - Use Rivet when the user wants a Node.js server that combines Zoom auth + webhooks + API calls with minimal glue code. |
Webhook reference - potential data exfiltration
| 69 | 2. Instantiate client(s) with credentials, webhook secret, and per-module port. |
Webhook reference - potential data exfiltration
| 72 | 5. Start receiver(s) and expose webhook endpoint(s) (`/zoom/events`) to Zoom. |
Webhook reference - potential data exfiltration
| 81 | - ISV orchestration layer with tenant-aware token storage and per-module webhooks. |
Webhook reference - potential data exfiltration
| 82 | - AWS Lambda webhook processor with Rivet `AwsLambdaReceiver`. |
Access to .env file
| 95 | - See [references/environment-variables.md](references/environment-variables.md) for standardized `.env` keys and where to find each value. |
External URL reference
| 29 | - https://developers.zoom.us/docs/rivet/ |
External URL reference
| 30 | - https://developers.zoom.us/docs/rivet/javascript/ |
External URL reference
| 31 | - https://zoom.github.io/rivet-javascript/ |