linode-api
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- [No Code] (SAFE): The skill consists entirely of static Markdown files and a JSON metadata file. There are no executable scripts, binaries, or automated commands.
- [Indirect Prompt Injection] (LOW): The skill references an external OpenAPI JSON file located at a GitHub repository (
linode/linode-api-docs). While fetching external content is a potential ingestion point for instructions, this is a standard documentation pattern, and the skill lacks any self-executing code or write-access capabilities that would enable exploitation. - [Metadata Poisoning] (SAFE): The metadata in
plugin.jsonaccurately describes the skill's purpose as a documentation reference for the Linode API without any deceptive instructions.
Audit Metadata