rental-prices
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The script performs GET requests to OpenStreetMap (Nominatim) for geocoding and ip-api.com for geolocation. These are well-known services and the usage is consistent with the skill's functionality.
- [DATA_EXPOSURE]: The skill creates and maintains a local cache directory at
~/.config/rental-pricesto store geocoding results, reducing unnecessary network requests. No sensitive system files or credentials are accessed. - [INDIRECT_PROMPT_INJECTION]: The skill ingests data from external APIs (Nominatim) and user-provided suburb names. While this presents a surface for indirect injection, the script only performs data processing and outputs structured JSON, and does not have the capability to execute commands or scripts derived from that data.
Audit Metadata