new-relic-nerdgraph
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill manages credentials securely by requiring the
NR_API_KEYto be provided via environment variables rather than hardcoding them in scripts or commands. - [SAFE]: Network activity is limited to the official New Relic API endpoint (
api.newrelic.com) for data retrieval. - [SAFE]: The implementation relies exclusively on built-in Node.js modules (
node:utiland nativefetch), eliminating the risk of supply chain attacks from untrusted third-party packages. - [SAFE]: User-provided inputs for NRQL queries and entity searches are processed with escaping functions (
escapeNrql) that mitigate common breakout attempts in the constructed GraphQL queries. - [SAFE]: No privilege escalation, persistence mechanisms, or obfuscated code patterns were detected.
Audit Metadata