HTTP Integration Patterns
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): No malicious patterns or security vulnerabilities were detected. The skill contains boilerplate code snippets for Dart/Flutter development.
- [DATA_EXPOSURE] (INFO): The code demonstrates standard practices for handling Authorization headers and base URLs; no hardcoded credentials or sensitive file paths are present.
- [PROMPT_INJECTION] (SAFE): There are no instructions that attempt to override agent behavior or bypass safety guidelines.
- [INDIRECT_PROMPT_INJECTION] (LOW): While the code patterns handle external API data, they are provided as static templates and do not present an active attack surface within this skill context. Evidence: 1. Ingestion points: response.body in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: http.Client network requests in SKILL.md. 4. Sanitization: Absent (standard JSON decoding).
Audit Metadata