google_vision_ocr
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs users to install the official
google-cloud-visionlibrary via pip. This is the verified package for accessing Google Cloud services. - [DATA_EXFILTRATION]: Image data is transmitted to Google Cloud Vision API endpoints for analysis. This operation is the primary function of the tool and targets a well-known service provider.
- [CREDENTIALS_UNSAFE]: The documentation refers to the use of
GOOGLE_APPLICATION_CREDENTIALS. This is the standard and recommended environment variable for secure service account authentication in Google Cloud, avoiding the use of hardcoded secrets.
Audit Metadata