context7
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the CONTEXT7_API_KEY environment variable for authentication, which is a secure method for handling API keys and prevents hardcoding secrets.
- [SAFE]: Network communication is directed to the official API at https://context7.com/api/v2, which aligns with the skill's stated purpose of fetching library documentation.
- [SAFE]: The Python implementation uses urllib.parse.urlencode to safely handle parameters in API requests, preventing basic injection attacks.
- [SAFE]: The skill relies entirely on Python's built-in libraries (argparse, json, urllib), eliminating risks associated with unverifiable third-party dependencies.
Audit Metadata