api-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- [Data Exposure] (SAFE): The
api_validator.pyscript reads local files within a specified project directory to analyze API patterns and OpenAPI specifications. It lacks any network capabilities, meaning it cannot exfiltrate the data it reads. - [Remote Code Execution] (SAFE): There are no patterns of remote code execution, such as piping curl to bash. The skill does not define any external dependencies or download third-party scripts.
- [Prompt Injection] (SAFE): The markdown content is purely instructional. It does not contain instructions aimed at overriding the AI agent's system prompt or bypassing safety guidelines.
- [Command Execution] (SAFE): While the skill documentation discusses 'Command Injection' in the context of security testing (OWASP Top 10), it does so for educational purposes only and does not contain or execute any malicious command strings.
Audit Metadata