omni-model-explorer
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses
curlto interact with the Omni REST API for fetching model definitions, topics, and schema YAML files. All commands are standard API requests directed at the vendor's infrastructure (omniapp.co). - [DATA_EXFILTRATION]: While the skill performs network operations to external endpoints, these are directed to the vendor's own API services (
$OMNI_BASE_URL). This is the primary intended function of the skill and does not involve unauthorized data transfer. - [CREDENTIALS_UNSAFE]: The skill handles authentication via the
OMNI_API_KEYenvironment variable. This follows security best practices by avoiding hardcoded secrets and using standard shell environment interpolation. - [SAFE]: Documentation links point to the official
docs.omni.codomain, which is a trusted source for this vendor's technical information.
Audit Metadata