paystack-verification
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a functional wrapper for Paystack's Verification API. Analysis of the code snippets and instructions confirms that the behavior matches the stated purpose.
- [DATA_EXFILTRATION]: The skill processes sensitive information such as bank account numbers, customer names, and identity document numbers (passports, IDs). This data is transmitted to Paystack, a well-known and trusted financial service provider (owned by Stripe), for legitimate verification purposes. No unauthorized exfiltration or suspicious network destinations were found.
- [REMOTE_CODE_EXECUTION]: No patterns for remote code execution, dynamic code generation, or suspicious external downloads were detected. The skill relies on an internal helper (
paystackRequest) defined in a separate setup skill. - [PROMPT_INJECTION]: The skill does not contain instructions that attempt to bypass AI safety filters or override system prompts.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys or secrets were found in the skill content. It correctly references a setup skill for handling authentication.
Audit Metadata