abridge-core-workflow-a
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a legitimate healthcare documentation workflow using industry-standard protocols such as WebSocket for audio streaming and FHIR for EHR data insertion. No malicious patterns were detected in the provided code snippets.
- [CREDENTIALS_UNSAFE]: The code correctly utilizes process environment variables (
ABRIDGE_CLIENT_SECRET,ABRIDGE_ORG_ID) for authentication, adhering to secret management best practices instead of hardcoding sensitive tokens. - [DATA_EXFILTRATION]: Network operations are restricted to the primary API endpoints required for the Abridge service and the user-specified EHR base URL. Data flow is consistent with the skill's stated purpose of processing clinical encounters.
Audit Metadata