Skills
skills/codealive-ai/ai-cofounder/posthog-analytics/Gen Agent Trust Hub

posthog-analytics

Pass

Audited by Gen Agent Trust Hub on Apr 2, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses mcporter to execute subcommands related to the PostHog API (e.g., posthog.event-definitions-list, posthog.query-generate-hogql-from-question). These operations are restricted to analytics data retrieval and project configuration within the PostHog environment.
  • [DATA_EXFILTRATION]: The skill processes user analytics data. No hardcoded credentials were found; it uses placeholders like [YOUR_PROJECT_ID] for user configuration. There is no evidence of data being sent to unauthorized third-party domains.
  • [EXTERNAL_DOWNLOADS]: The skill references PostHog and a custom MCP wrapper ('mcporter'). These are functional dependencies for the skill's stated purpose of providing product analytics.
  • [PROMPT_INJECTION]: The instructions do not contain any patterns intended to override agent behavior, bypass safety filters, or extract system prompts.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 2, 2026, 07:02 AM