intercom-api
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses
curlvia Bash to perform REST API operations (GET, POST, PUT) on Intercom for tasks such as replying to conversations and managing articles. - [REMOTE_CODE_EXECUTION]: Python scripts are used locally to parse JSON responses and construct request payloads. A
python3heredoc is specifically used to safely handle complex data for tracker tickets. - [EXTERNAL_DOWNLOADS]: All network operations are directed to the official Intercom API domain (
api.intercom.io). - [CREDENTIALS_UNSAFE]: Authentication is managed via the
INTERCOM_ACCESS_TOKENenvironment variable, which is a standard security practice for API integrations. The skill uses placeholders for sensitive IDs and tokens.
Audit Metadata