arcgis-layers
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides examples for loading data from external URLs using specific layer types like GeoJSONLayer and CSVLayer. These examples point to well-known geospatial services such as the USGS and ArcGIS Online for earthquake and landscape data.
- [PROMPT_INJECTION]: Analysis of the instructions and the agent guide shows no attempts to override system behavior, bypass safety guardrails, or extract internal configuration. The content is purely educational and technical.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys, secrets, or sensitive tokens were found. Placeholders like 'VECTOR_TILE_ITEM_ID' are used appropriately for configuration examples.
- [DATA_EXFILTRATION]: There is no evidence of logic that accesses sensitive local files or transmits unauthorized information. All network operations are intended for fetching public mapping data as described in the skill's purpose.
- [REMOTE_CODE_EXECUTION]: The skill uses the official '@arcgis/core' library. No suspicious execution patterns, such as piping remote scripts to a shell, were detected.
Audit Metadata