API Design Skill
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is purely informational, consisting of markdown documentation and code examples for API design best practices. No executable logic or automated scripts are included.
- [COMMAND_EXECUTION]: Provides example CLI commands for acquiring Azure access tokens (
az account get-access-token) and REST API calls (PowerShellInvoke-RestMethod). These are clearly presented as educational templates for users to follow, not as commands intended for immediate or automated execution by the agent. - [EXTERNAL_DOWNLOADS]: Mentions well-known services and platforms such as Microsoft Graph, Azure DevOps, and Qualtrics for integration examples. References to these official APIs and the use of tools like
ngrokfor local development are standard industry practices and do not involve untrusted remote code execution. - [DATA_EXFILTRATION]: No evidence of hardcoded credentials or unauthorized data access. Examples use generic placeholders like
{task-id},{etag}, anduserIdfor demonstration purposes.
Audit Metadata