local-places
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill is a standard API bridge implementation and provides functional utility with minimal risk surface.
- [DATA_EXFILTRATION]: The skill interacts exclusively with the official Google Places API (well-known service) and the local host. Sensitive API keys are managed correctly through environment variables and .env files, avoiding hardcoded secrets.
- [COMMAND_EXECUTION]: The provided setup instructions utilize standard, well-known development tools like
uvanduvicornfor local server management. No unauthorized or dangerous shell command injection patterns were identified.
Audit Metadata