apify-trend-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements secure credential management by instructing users to utilize a local
.envfile for theAPIFY_TOKEN, ensuring sensitive access tokens are not hardcoded or exposed through command execution history. - [SAFE]: All network operations, including those performed by the
mcpcCLI tool and therun_actor.jsscript, are directed to official Apify domains (api.apify.com,mcp.apify.com), which is appropriate and expected for the skill's functionality. - [EXTERNAL_DOWNLOADS]: The skill recommends installing the
@apify/mcpcpackage from NPM, which is the official Model Context Protocol (MCP) client provided by the vendor to facilitate communication with their actors. - [COMMAND_EXECUTION]: The workflow involves local execution of Node.js scripts and CLI tools to process trend data, which are necessary components of the skill and operate within the context of the user's environment without escalation of privileges.
Audit Metadata