asc-ppp-pricing
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized behaviors were detected. The skill functions as a documentation and workflow guide for mobile developers.
- [COMMAND_EXECUTION]: The skill provides numerous examples for the
asccommand-line utility. These commands are used to automate App Store Connect tasks such as setting subscription tiers and creating in-app purchases. All commands are relevant to the skill's stated purpose and do not perform unexpected operations. - [CREDENTIALS_UNSAFE]: The skill documentation correctly identifies the need for authentication and recommends using environment variables (
ASC_APP_ID,ASC_AUTH_KEY, etc.) or the tool's login command, which is a standard and secure practice for CLI tools. - [PROMPT_INJECTION]: The skill describes a feature to import pricing configurations from a CSV file (
ppp-prices.csv). While this involves processing external data, it is a routine bulk-update mechanism. The skill does not contain instructions that attempt to bypass AI safety filters or override agent behavior. - [DATA_EXFILTRATION]: No network exfiltration or unauthorized file access patterns were found. The tool interacts with legitimate Apple developer APIs through the
ascCLI.
Audit Metadata