auto-dev
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a legitimate technical documentation and resource guide for the Auto.dev automotive data platform.
- [SAFE]: Sensitive data such as API keys are managed using environment variables (AUTODEV_API_KEY), which is the recommended practice for AI agents to avoid credential exposure.
- [SAFE]: Code templates provided in files like
code-patterns.mdandapp-scaffolding.mdemphasize server-side implementation and API proxying to ensure credentials are never exposed in client-side code. - [SAFE]: All external URL references point to the vendor's official domains (auto.dev) or established, well-known services (Stripe for payment processing), which is consistent with the skill's stated purpose.
- [SAFE]: No evidence of prompt injection, obfuscation, or unauthorized command execution was found across the 18 analyzed files.
Audit Metadata