uspto-database
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill interacts exclusively with official USPTO API endpoints (e.g., uspto.gov, patentsview.org). All network requests use the standard 'requests' library with no evidence of downloading and executing untrusted remote code.
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded API keys or secrets were found. The code correctly implements environment variable lookups (USPTO_API_KEY) and uses placeholders (YOUR_API_KEY) in documentation examples.
- [COMMAND_EXECUTION] (SAFE): The provided scripts do not use dangerous functions like eval(), exec(), or subprocess calls to execute system commands. The CLI interfaces are strictly for data retrieval and display.
- [PROMPT_INJECTION] (SAFE): The markdown documentation does not contain instructions designed to override agent behavior or bypass safety guardrails. All instructional text is focused on API usage and data structure.
- [DATA_EXFILTRATION] (SAFE): There is no logic that attempts to access sensitive local files (e.g., SSH keys, credentials) or send user data to unverified third-party domains.
Audit Metadata