datocms-cda
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses official vendor-maintained libraries (such as
@datocms/cda-client) and interacts with official DatoCMS endpoints (https://graphql.datocms.com/). - [SAFE]: No hardcoded credentials or sensitive identifiers were found. The documentation correctly instructs the user to manage API tokens via environment variables (e.g.,
DATOCMS_CDA_TOKEN). - [SAFE]: No evidence of prompt injection, obfuscation, or malicious command execution was detected in any of the files.
- [EXTERNAL_DOWNLOADS]: The skill references the installation of standard development dependencies and utilities, including
@datocms/cda-client,gql.tada, and@graphql-codegen/cli. These references are documented neutrally as they are necessary for the skill's primary functionality of content retrieval and type-safe development.
Audit Metadata