Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/clay-multi-env-setup/Gen Agent Trust Hub

clay-multi-env-setup

Pass

Audited by Gen Agent Trust Hub on Mar 25, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill follows security best practices for secret management by instructing the agent to use environment variables and dedicated cloud secret managers (AWS Secrets Manager, Google Cloud Secret Manager, and Vault) rather than hardcoding sensitive information.
  • [COMMAND_EXECUTION]: The skill includes bash snippets for troubleshooting and secret management. These commands use official CLI tools (aws, gcloud) and standard utilities (curl, jq) to interact with well-known services (AWS, GCP, and the official Clay API). These operations are consistent with the skill's stated purpose of environment configuration.
  • [DATA_EXFILTRATION]: While the skill demonstrates how to use curl with API keys, it correctly targets the official Clay API endpoint (https://api.clay.com/v1/me) for validation purposes, which is a legitimate and expected behavior for a tool managing this service.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 25, 2026, 04:40 PM