Skills
skills/freekmurze/dotfiles/freek-dev-blog/Gen Agent Trust Hub

freek-dev-blog

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: All network operations and API interactions are directed towards freek.dev, which is the official domain of the skill author, freekmurze.
  • [CREDENTIALS_UNSAFE]: The skill correctly instructs the agent to retrieve the authentication token from a designated local secrets file (.secrets/blog-freek-dev.md), adhering to standard security practices for managing sensitive credentials.
  • [PROMPT_INJECTION]: While the skill ingests data from external sources (linked articles and YouTube metadata) to generate summaries, the risk of indirect prompt injection is mitigated by strict formatting constraints, including sentence limits and character restrictions (e.g., forbidding em dashes).
  • [COMMAND_EXECUTION]: The provided curl examples are for documenting API interactions and do not involve executing arbitrary or untrusted code.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 02:39 AM