Skills
skills/pinecone-io/skills/pinecone-full-text-search/Gen Agent Trust Hub

pinecone-full-text-search

Pass

Audited by Gen Agent Trust Hub on May 7, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the pinecone Python library (version 9.0 or higher) and the typer library. These are standard, well-known packages from the official vendor and the Python Package Index (PyPI).
  • [COMMAND_EXECUTION]: The skill uses uv run to execute a local helper script (scripts/ingest.py) for data ingestion. The script logic is transparent and focused on bulk-uploading JSONL data to Pinecone's API.
  • [DATA_EXFILTRATION]: While the skill involves sending data to an external service (Pinecone), this is the explicitly stated purpose of the skill. The operations are performed using the official Pinecone SDK and target the vendor's own domain (pinecone.io).
  • [CREDENTIALS_UNSAFE]: The skill follows security best practices by instructing the agent and user to use the PINECONE_API_KEY environment variable for authentication, rather than providing or requesting hardcoded secrets.
Audit Metadata
Risk Level
SAFE
Analyzed
May 7, 2026, 04:57 AM