bkend-data
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references live documentation and tool guides from the official popup-studio-ai GitHub repository. These are legitimate vendor resources used to provide the agent with up-to-date technical context.
- [COMMAND_EXECUTION]: The skill includes 'Bash' in its allowed-tools list. This permission is consistent with the skill's purpose of managing database environments and performing administrative tasks within the agent's workspace.
- [DATA_EXFILTRATION]: Database operations are performed through specific MCP tools (e.g., backend_data_list, backend_data_get) requiring explicit context such as organizationId and projectId. There is no evidence of unauthorized data access or exfiltration to third-party domains.
Audit Metadata