customerio-cost-tuning
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXFILTRATION]: The skill interacts solely with official Customer.io API infrastructure (api.customer.io and track.customer.io). It manages customer profiles and event data according to the primary purpose of cost tuning without unauthorized data transmission.
- [PROMPT_INJECTION]: Instructions are focused on administrative tasks like auditing and cost reduction. No attempts to override agent behavior, bypass safety filters, or extract system prompts were detected.
- [CREDENTIALS_UNSAFE]: The implementation guides utilize environment variables (e.g., CUSTOMERIO_API_KEY, CUSTOMERIO_SITE_ID) for API authentication. This follows established security best practices for managing sensitive credentials in code.
- [EXTERNAL_DOWNLOADS]: The skill references standard, well-maintained libraries from the official NPM registry, specifically the @customerio/track client and lru-cache, which are appropriate for the described functionality.
Audit Metadata