speak-webhooks-events
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected during the analysis of the skill instructions and reference materials.
- [EXTERNAL_DOWNLOADS]: The skill performs health checks via curl to the official vendor API at api.speak.com, which is an expected operational behavior.
- [COMMAND_EXECUTION]: Provides standard command-line examples using curl, jq, and the vendor-provided speak CLI tool for local testing and verification purposes.
- [CREDENTIALS_UNSAFE]: The implementation guides correctly instruct the user to manage sensitive secrets like API keys and webhook signing secrets using environment variables (e.g., SPEAK_API_KEY, SPEAK_WEBHOOK_SECRET) rather than hardcoding them.
Audit Metadata