bkend-data
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard documentation and code snippets for interacting with the bkend.ai API. All external references target official 'bkend.ai' domains and verified NPM packages (@bkend/mcp-server).
- [CREDENTIALS_UNSAFE]: The documentation correctly identifies best practices for secret management by instructing users to use environment variables (.env.local) for sensitive keys rather than hardcoding them.
- [DATA_EXFILTRATION]: Network operations described are standard REST API calls to the vendor's own infrastructure (api.bkend.ai) for intended functionality (CRUD, Auth, Storage).
- [COMMAND_EXECUTION]: The MCP configuration example uses 'npx @bkend/mcp-server', which is a standard method for running the vendor's official integration tool.
Audit Metadata