Skills
skills/neuradex/langfuse-skills/langfuse-prompt-list/Gen Agent Trust Hub

langfuse-prompt-list

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS] (SAFE): The skill utilizes npx tsx to execute its script. While npx can download packages from the npm registry if not present locally, tsx is a widely-recognized and reputable TypeScript execution environment. This is considered a standard practice for development-oriented agent skills.
  • [DATA_EXFILTRATION] (SAFE): The script correctly handles authentication by reading LANGFUSE_PUBLIC_KEY and LANGFUSE_SECRET_KEY from environment variables. These credentials are sent only to the specified Langfuse host (defaulting to the official https://us.cloud.langfuse.com) via standard Basic Authentication headers for API access.
  • [COMMAND_EXECUTION] (SAFE): The skill defines a single command to execute its own local script. There is no evidence of command injection, execution of untrusted external input, or attempts to spawn arbitrary subprocesses.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:28 PM