discord-openapi-skill
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads the official Discord OpenAPI specification from the 'discord-api-spec' repository on GitHub. This is used to dynamically map API operations to command-line arguments. As this repository is an official source for a well-known service, it is considered safe and standard for the skill's functionality.
- [COMMAND_EXECUTION]: The skill defines command-line aliases for interacting with Discord. These commands are generated using a structured OpenAPI schema, which acts as a validation layer for API requests and reduces the risk of malformed command construction.
- [CREDENTIALS_UNSAFE]: The documentation provides instructions for setting up Discord bot tokens and OAuth2 credentials. It correctly uses placeholders for sensitive values and recommends the use of environment variables or the uxc tool's built-in credential manager rather than hardcoding secrets.
Audit Metadata