modelscope-api
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a standard API client for the ModelScope platform. It facilitates text generation and image generation by wrapping official API calls in a convenient JavaScript interface.
- [EXTERNAL_DOWNLOADS]: The skill communicates with the official ModelScope API at
https://api-inference.modelscope.cn. These network operations are necessary for the skill's primary function and target a well-known service endpoint. - [CREDENTIALS_UNSAFE]: Authentication is handled correctly through the
MODELSCOPE_API_KEYenvironment variable or a constructor argument. No hardcoded credentials or secrets were found in the source code; placeholders like 'your-modelscope-token' and 'invalid-api-key' are used appropriately in documentation and examples. - [COMMAND_EXECUTION]: The skill does not perform any dangerous shell command execution. Scripts defined in
package.jsonare limited to running the included example and test files using Node.js.
Audit Metadata