paystack-terminal
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security threats detected. The skill provides endpoints and examples for managing Paystack POS terminals through a documented API helper.
- [PROMPT_INJECTION]: No direct prompt injection instructions were found. The skill possesses an indirect prompt injection surface as it interpolates user-provided terminal and event IDs into API request paths. Ingestion points: terminalId, eventId, and serial_number in request bodies. Boundary markers: None. Capability inventory: Making network requests to the Paystack API via the paystackRequest helper. Sanitization: Not specified in the markdown documentation.
- [DATA_EXFILTRATION]: No hardcoded credentials or sensitive data exposure identified. Network operations are directed at the Paystack service via a trusted helper function.
- [REMOTE_CODE_EXECUTION]: No remote script downloads or dynamic execution patterns (like eval or exec) are used.
- [COMMAND_EXECUTION]: No system commands or subprocess spawning were detected.
Audit Metadata