guidewire-hello-world
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill correctly manages credentials using environment variables (e.g., GW_CLIENT_ID, GW_CLIENT_SECRET) rather than hardcoding them within the instructions or code snippets.
- [SAFE]: Command execution is limited to standard utility tools (curl, jq) used for API connectivity testing and structured data processing.
- [SAFE]: No evidence of prompt injection, data exfiltration to unauthorized domains, or obfuscated content was found during the analysis of the skill file.
- [SAFE]: Although the skill interacts with external API data, the provided implementation follows standard patterns for querying and displaying resource information without introducing indirect injection vulnerabilities.
Audit Metadata