Skills
skills/gitstua/stu-skills/outbound-ip/Gen Agent Trust Hub

outbound-ip

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • COMMAND_EXECUTION (SAFE): The script utilizes standard shell commands (curl, tr) and a Python sub-process for its core functionality. These operations are restricted to its stated purpose and do not pose a security risk.
  • EXTERNAL_DOWNLOADS (LOW): The script connects to api64.ipify.org, ifconfig.me, and checkip.amazonaws.com via HTTPS. These are well-known IP echo services, but they constitute external network dependencies.
  • DATA_EXFILTRATION (SAFE): No sensitive local data is accessed. The skill only transmits requests to IP discovery endpoints to receive the caller's own public IP address.
  • REMOTE_CODE_EXECUTION (SAFE): While the script invokes python3 to validate IPv6 addresses, the Python code is a static heredoc, and the remote data is passed as a positional argument, preventing shell or Python injection.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:43 PM