netbox-integration-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The skill contains technical documentation and reference code for API usage without any instructions designed to bypass AI safety filters or override system prompts.
- Data Exposure & Exfiltration (SAFE): Best practices for token security are emphasized throughout, and all examples use safe placeholder formats like 'nbt_abc123.xxxxx'. No exfiltration logic was found.
- Obfuscation (SAFE): All markdown and code files are transparent and human-readable, with no use of Base64, zero-width characters, or other encoding tricks.
- Unverifiable Dependencies (SAFE): Recommends standard and reputable Python libraries such as requests, pynetbox, and httpx. While it mentions specialized tools like netbox-graphql-query-optimizer, these are appropriate for the domain.
- Indirect Prompt Injection (LOW): The skill defines patterns for ingesting data from external APIs. This constitutes an attack surface, but the skill provides significant structural guidance on safe handling and lacks immediate exploitable capabilities.
Audit Metadata