exa-webhooks-events
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No patterns of prompt injection, bypass attempts, or instructions to ignore safety guidelines were found in SKILL.md.
- [DATA_EXFILTRATION]: No hardcoded credentials or sensitive data exposure was found in SKILL.md. The provided code correctly uses environment variables (EXA_WEBHOOK_SECRET, REDIS_URL) for configuration.
- [COMMAND_EXECUTION]: Bash commands in SKILL.md are restricted to standard development tools like curl and ngrok, intended for local endpoint testing and debugging.
- [EXTERNAL_DOWNLOADS]: Referenced external resources in SKILL.md are limited to official documentation (docs.exa.com) and well-known developer services (webhook.site, ngrok), which are documented neutrally.
- [REMOTE_CODE_EXECUTION]: No patterns of remote script execution or unverifiable dependency loading were detected in SKILL.md.
Audit Metadata