iblai-account
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches version metadata from the official PyPI registry and the GitHub API to check for updates to the vendor's CLI tool (
iblai-app-cli). These operations target well-known services and are used for environment maintenance. - [COMMAND_EXECUTION]: Instructs the agent to run the vendor's command-line interface (
iblai add account) and standard development commands such asnpm run buildandnpm run testfor project verification. - [REMOTE_CODE_EXECUTION]: Automated scan alerts regarding remote code execution were evaluated. The skill uses
curlto fetch JSON data which is then piped to a static Python script via the-cflag. This pattern ensures that the remote content is treated as data (stdin) for parsing rather than being executed as a shell script, making it a secure method for version detection.
Audit Metadata