Skills
skills/konecty/skills/konecty-session/Gen Agent Trust Hub

konecty-session

Pass

Audited by Gen Agent Trust Hub on Mar 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses a local Python script (scripts/login.py) to manage authentication steps and filesystem operations.
  • [CREDENTIALS_UNSAFE]: Session tokens are stored in plaintext in ~/.konecty/.env and ~/.konecty/credentials. This is the primary function of the skill and is protected by restricted directory permissions (0700).
  • [DATA_EXFILTRATION]: The skill transmits user identifiers and OTP codes to the Konecty API endpoint for verification.
  • [PROMPT_INJECTION]: The skill contains a surface for indirect prompt injection. 1. Ingestion points: JSON responses from the {host}/api/auth endpoints in scripts/login.py. 2. Boundary markers: Absent. 3. Capability inventory: Filesystem write access (ensure_env_file, ensure_credentials_ini) and outbound network requests. 4. Sanitization: Absent; the script directly interpolates API response data into configuration files.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 17, 2026, 07:25 PM