a6-recipe-graphql-proxy
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is purely instructional, providing configuration examples for Apache APISIX. It does not contain any malicious instructions, obfuscation, or unauthorized access patterns.
- [COMMAND_EXECUTION]: The skill utilizes the
a6CLI andcurlfor route configuration and verification. These commands are used for their intended purpose within the scope of API gateway administration and are restricted to interacting with the local gateway instance (localhost:9080). - [DATA_EXFILTRATION]: Network operations are directed at the local loopback address for testing purposes. Example API keys use obvious placeholders (e.g.,
my-key), which does not pose a risk of credential exposure. - [PROMPT_INJECTION]: No attempts to override agent behavior or safety filters were detected in the instructions or metadata.
Audit Metadata