signal
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses official Node.js packages
@personize/sdkand@personize/signalwhich are vendor-provided resources and necessary for core functionality. - [CREDENTIALS_UNSAFE]: Sensitive configuration items such as
PERSONIZE_SECRET_KEY,SLACK_WEBHOOK, andWEBHOOK_SECRETare correctly accessed via environment variables, avoiding the risk of hardcoded secrets. - [COMMAND_EXECUTION]: The sample recipes demonstrate the use of
npx ts-nodefor running demonstration scripts locally, which is a standard and safe procedure for development testing.
Audit Metadata