claude-api
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill documentation and code examples reference official Anthropic SDKs and documentation hosted on trusted platforms, including GitHub (github.com/anthropics), NPM (@anthropic-ai/sdk), and PyPI (anthropic). These are recognized as trusted, well-known services.
- [COMMAND_EXECUTION]: The skill provides patterns for the 'Bash' tool within the Agent SDK, enabling shell command execution for automated tasks. It correctly documents the use of permission modes (e.g., 'default', 'acceptEdits') and includes explicit warnings regarding the high-privilege 'bypassPermissions' mode.
- [PROMPT_INJECTION]: Instructions within the metadata and model catalog guide the agent to prioritize specific model IDs and settings (e.g., Claude Opus 4.6 with adaptive thinking). These are functional steering instructions intended for the skill's technical implementation and do not constitute malicious behavior.
- [REMOTE_CODE_EXECUTION]: Examples for server-side code execution are documented, which utilize Anthropic's managed and isolated sandboxing environment for data analysis and file processing, separate from the user's local system execution.
- [DATA_EXFILTRATION]: While the skill illustrates tools with network capabilities (WebFetch, MCP server integration), these are presented as legitimate features for web search and database interaction within agentic workflows, with no evidence of malicious data exfiltration patterns.
Audit Metadata