anthropic-api
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation describes interactions with https://api.anthropic.com/v1/messages. This is a well-known service and the official endpoint for Anthropic's API, making the network activity legitimate and safe.
- [CREDENTIALS_UNSAFE]: Security best practices are followed by instructing the user to store the API key in an environment variable ($ANTHROPIC_API_KEY) instead of hardcoding it within the skill or command-line arguments.
- [DATA_EXFILTRATION]: Analysis of the usage patterns and code snippets shows no attempts to send sensitive local data (such as SSH keys or configuration files) to external servers. Communication is restricted to the intended API provider.
- [PROMPT_INJECTION]: The skill contains no instructions that attempt to bypass AI safety guardrails, override system prompts, or extract internal configuration data.
Audit Metadata