konecty-meta-pivot
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a standard administrative utility for the Konecty platform. No malicious instructions, obfuscation, or unauthorized access patterns were detected.
- [DATA_EXFILTRATION]: The script retrieves authentication tokens from
~/.konecty/.envand~/.konecty/credentials. These are recognized as legitimate vendor-specific configuration files used for authenticating requests to the Konecty API. While the host can be overridden via command-line arguments, this is standard functionality for such tools. - [REMOTE_CODE_EXECUTION]: All functionality is implemented using Python's standard library (urllib, json, argparse). There are no patterns involving the download or execution of untrusted remote code.
Audit Metadata