docapi
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the fetching of styling assets from Google Fonts (fonts.googleapis.com), a well-known and trusted service.
- [DATA_EXFILTRATION]: The skill transmits HTML content and URLs to the vendor's API endpoints (api.docapi.co) to perform its primary functions of document generation and screenshot capture.
- [COMMAND_EXECUTION]: The instructions leverage the
curlutility to interact with the DocAPI web services and save the resulting files to the local file system. - [CREDENTIALS_UNSAFE]: The skill manages an API key (
DOCAPI_KEY) and a wallet address (DOCAPI_USDC_ADDRESS) by storing them in environment variables, which is a standard practice for service authentication.
Audit Metadata