posthog-cost-tuning
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [SAFE]: No security issues detected.
- [EXTERNAL_DOWNLOADS]: Fetches event volume and billing data from PostHog's official API (app.posthog.com). PostHog is a well-known analytics service, and these operations are necessary for the skill's primary purpose.
- [CREDENTIALS_UNSAFE]: Follows security best practices by using environment variables (e.g., $POSTHOG_PERSONAL_API_KEY) and placeholders (e.g., PROJECT_ID, ORG_ID, YOUR_KEY) rather than hardcoding sensitive information.
Audit Metadata