pikku-auth-js

Integrates Auth.js with Pikku apps, managing OAuth providers and session handling through customizable routes and handlers.

Install this skill

93/100

Security score

The pikku-auth-js skill was audited on Jun 13, 2026 and we found 3 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

low line 235

Fetch to external URL

SourceSKILL.md

235	await fetch('/auth/signout', { method: 'POST', credentials: 'include' })

medium line 271

Access to .env file

SourceSKILL.md

271	Do not pass `secret: process.env.AUTH_SECRET` or any string value directly to `authJsSession`. The `secret` option no longer exists — `secretId` is the only accepted form.

low line 36

External URL reference

SourceSKILL.md

36	`@pikku/auth-js` provides [Auth.js](https://authjs.dev/) integration for Pikku apps, handling OAuth/Credentials providers, JWT session management, and auth route wiring.

Scanned on Jun 13, 2026

View Security Dashboard

Installation guide →

GitHub Stars 56

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

frontend react docx git api backend-developer fullstack-developer product-manager development product

pikkujs/pikku