customer-retention-engine
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of documentation, evaluation criteria, and task descriptions focused on e-commerce marketing automation. No malicious instructions, obfuscation, or persistence mechanisms were detected.
- [EXTERNAL_DOWNLOADS]: References well-known and trusted services such as Klaviyo, AutomateWoo, Shopify, and BigCommerce. These references are appropriate for the skill's stated purpose of building retention engines.
- [DATA_EXFILTRATION]: Provides a TypeScript code snippet for sending order events to the Klaviyo API. The implementation follows security best practices by using an environment variable (
process.env.KLAVIYO_PRIVATE_KEY) for authentication rather than hardcoding credentials. - [COMMAND_EXECUTION]: Mentions common development tools (e.g., claude-code, cursor, gemini-cli) in the metadata, but does not contain any suspicious or arbitrary command execution patterns.
Audit Metadata