ktor-client
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill configuration and documentation reference official Ktor libraries (io.ktor) for HTTP client operations and serialization. These are industry-standard, well-known dependencies maintained by JetBrains and are hosted on trusted Maven registries.
- [SAFE]: Sensitive configuration, including API keys, bearer tokens, and backend URLs, are demonstrated using security best practices such as environment variable retrieval (System.getenv) and descriptive placeholders, effectively preventing hardcoded credential exposure.
- [SAFE]: The provided code examples include security-enhancing features like logging sanitization (sanitizeHeader) to prevent sensitive authentication data from being written to logs.
- [SAFE]: No patterns of prompt injection, obfuscation, or unauthorized persistence were detected within the skill's documentation or sample code.
Audit Metadata