telegram-bot-builder
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [CREDENTIALS_UNSAFE] (SAFE): The skill demonstrates secure practices by referencing environment variables (
process.env.BOT_TOKEN,process.env.PAYMENT_TOKEN) rather than hardcoding sensitive API keys or tokens. - [EXTERNAL_DOWNLOADS] (SAFE): Mentions reputable and standard libraries for bot development including
telegraf,grammY,python-telegram-bot, andaiogram. No suspicious or unknown package installations are present. - [COMMAND_EXECUTION] (SAFE): The provided code snippets are strictly related to bot logic and do not include any shell command execution, subprocess spawning, or unsafe system-level calls.
- [PROMPT_INJECTION] (SAFE): No meta-instructions, bypass markers, or attempts to override the AI's core safety protocols were found in the skill text or metadata.
Audit Metadata