latitude-telemetry
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references several official Latitude SDKs and well-known OpenTelemetry packages across Python, Node.js, PHP, and Ruby ecosystems. These are standard dependencies for the described functionality.
- [DATA_EXFILTRATION]: The skill guides the agent to configure telemetry transmission to
https://gateway.latitude.so. This is the official endpoint for the Latitude service and is consistent with the skill's primary purpose of LLM observability. - [CREDENTIALS_UNSAFE]: The skill prompts the user to provide a
LATITUDE_API_KEYandLATITUDE_PROJECT_IDinteractively. No hardcoded credentials or secrets were found in the skill's files. - [COMMAND_EXECUTION]: The README provides standard installation commands for adding the skill to various AI agents (Cursor, Claude Code, Codex CLI), which is expected behavior for skill distribution.
- [PROMPT_INJECTION]: The instructions in
SKILL.mdare descriptive and technical, using natural language to guide the agent without any attempts to bypass safety filters or override system instructions.
Audit Metadata