Skills
skills/coval-ai/coval-external-skills/add-widget/Gen Agent Trust Hub

add-widget

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [SAFE]: No malicious patterns, data exfiltration, or obfuscation were detected. The skill uses the vendor's own CLI tool for dashboard operations.
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute coval CLI commands. It uses variable interpolation for dashboard IDs and widget configurations.
  • Ingestion points: User-supplied dashboard-id and widget configuration JSON in SKILL.md.
  • Boundary markers: Absent.
  • Capability inventory: Executes shell commands via the coval CLI to list, create, and verify dashboard widgets.
  • Sanitization: None explicitly defined in the skill instructions; the agent is expected to pass user-provided values into the command arguments.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 11:43 AM