didit-liveness-detection
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill communicates only with the official vendor domains (
didit.me,apx.didit.me,verification.didit.me) for its intended liveness detection functionality. - [SAFE]: Sensitive credentials (API keys) are managed through environment variables as specified in the metadata, avoiding hardcoded secrets.
- [SAFE]: The Python utility script (
scripts/check_liveness.py) is a straightforward implementation using the standardrequestslibrary without any hidden or dangerous execution patterns. - [SAFE]: No evidence of prompt injection, data exfiltration, or persistence mechanisms was found in the provided files.
Audit Metadata