Billing
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded secrets or API keys were detected. The skill correctly demonstrates the use of environment variables and placeholders for sensitive information.
- [DATA_EXFILTRATION] (SAFE): No unauthorized network calls or sensitive file access patterns were found. Network operations are limited to legitimate API endpoints (e.g., Stripe, official EU VAT validation service) required for the skill's stated purpose.
- [PROMPT_INJECTION] (SAFE): No instructions attempting to override agent behavior, bypass safety filters, or extract system prompts were identified.
- [EXTERNAL_DOWNLOADS] (SAFE): Referenced libraries and external validation APIs are standard in the industry and used for functional requirements. The network call to 'ec.europa.eu' for VAT validation is a legitimate, official source for tax compliance.
- [REMOTE_CODE_EXECUTION] (SAFE): No patterns of remote script execution or dynamic code evaluation from untrusted sources were found.
- [COMMAND_EXECUTION] (SAFE): The skill does not contain any shell commands or subprocess execution patterns.
Audit Metadata