discord-doctor
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Data Exposure & Exfiltration] (SAFE): The tool accesses the .env file and DISCORD_USER_TOKEN variable. This access is documented and necessary for diagnosing connectivity issues. No evidence of unauthorized data exfiltration or credential theft was found.
- [Command Execution] (SAFE): The skill runs a local Python script (discord_doctor.py) to perform its diagnostics.
- [Indirect Prompt Injection] (SAFE): The tool processes configuration files which could theoretically serve as injection points. Ingestion points: .env and config/agents.yaml. Boundary markers: None specified. Capability inventory: Network requests to the Discord API and directory writability checks. Sanitization: None specified. The risk is negligible as the utility acts on trusted local configuration for diagnostic purposes.
Audit Metadata