webconsulting-create-documentation
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions promote security best practices by advising the use of
.envfiles for managing sensitive API keys (ElevenLabs, Suno) rather than hardcoding them. - [EXTERNAL_DOWNLOADS]: The skill utilizes well-known and reputable services for its core functionality, including ElevenLabs for text-to-speech, Suno for AI music, and official GitHub releases for video hosting. All package installations use standard registries (NPM).
- [COMMAND_EXECUTION]: The skill uses standard development commands and tools such as
npm,npx,tsx, andgh cli. These operations are well-documented and consistent with the stated purpose of building and rendering video documentation. - [DATA_EXFILTRATION]: No patterns of unauthorized data access or transmission to unknown third parties were detected. Network operations are limited to official API endpoints for the services mentioned.
- [INDIRECT_PROMPT_INJECTION]: While the skill involves the agent processing user-provided descriptions to generate images and narration, this is the primary function of the tool and is handled within the scope of creative content generation with no identified path to system-level exploitation.
Audit Metadata