scout-api
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [SAFE]: No malicious patterns, prompt injections, or obfuscated payloads were identified within the skill instructions.
- [EXTERNAL_DOWNLOADS]: The skill uses curl to communicate with scoutapm.com, which is a recognized and well-known application performance monitoring service. These interactions are consistent with legitimate API usage and do not involve untrusted code execution.
- [COMMAND_EXECUTION]: Standard system utilities including curl, jq, and base64 are used for authorized data retrieval and transformation, matching the skill's primary purpose.
- [CREDENTIALS_UNSAFE]: Authentication is handled using the environment variable $SCOUT_API_KEY, adhering to security best practices for avoiding hardcoded secrets in code or configuration.
Audit Metadata