instantly-data-handling
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements legitimate data handling and compliance patterns specifically for the Instantly platform integration.
- [CREDENTIALS_UNSAFE]: The code correctly uses environment variables (
process.env.INSTANTLY_API_KEY) for authentication instead of hardcoding sensitive API keys. - [DATA_EXFILTRATION]: All network requests are directed to the official Instantly API endpoint (
api.instantly.ai). No unauthorized or suspicious data exfiltration patterns were detected. - [PROMPT_INJECTION]: Analyzed the data ingestion surface related to lead records and webhooks. The skill uses
zodfor basic schema validation of external data and does not expose the agent to direct control by untrusted input. No instructions were found that attempt to override safety filters or agent behavior. - [COMMAND_EXECUTION]: No patterns of arbitrary command execution, shell spawning, or dangerous system-level operations were identified.
Audit Metadata