apideck-python
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill documentation and code examples follow industry best practices for API integrations. It encourages the use of environment variables for authentication and provides patterns for proper error handling and client lifecycle management.
- [EXTERNAL_DOWNLOADS]: The skill references the installation of the 'apideck-unify' package via pip. This is the official SDK provided by Apideck for interacting with their Unified API platform and is documented neutrally as a standard dependency.
- [PROMPT_INJECTION]: The skill facilitates the retrieval of data from external third-party connectors, creating a surface for potential indirect prompt injection. Ingestion points: Data retrieved from 200+ connectors via SDK methods in SKILL.md. Boundary markers: None present in code examples. Capability inventory: Network operations via apideck-unify client. Sanitization: None explicitly shown in examples. This is considered a characteristic of the tool's integration purpose rather than an active vulnerability.
Audit Metadata