rstack-page
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [SAFE]: No malicious patterns or unauthorized data exfiltration behaviors were detected. The skill's functionality is consistent with its stated purpose of managing platform-specific agent listings.
- [COMMAND_EXECUTION]: The skill utilizes shell commands including curl and python3 to interact with the resolved.sh API and process data. These operations are transparently defined and used for legitimate configuration tasks.
- [CREDENTIALS_UNSAFE]: The skill references and uses a sensitive environment variable (RESOLVED_SH_API_KEY) for authentication. This use is restricted to authorizing requests against the official vendor API, aligning with standard practice for developer-oriented tools.
Audit Metadata