stability-ai
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements security-conscious error handling. The
scripts/generate.pyscript contains logic to identify and mask theSTABILITY_API_KEYwithin error messages returned by the API, preventing accidental credential exposure in logs or user interfaces. - [EXTERNAL_DOWNLOADS]: The skill makes legitimate network requests to the Stability AI API at
https://api.stability.ai/v2beta. These connections are necessary for the skill's primary function of generating images and are directed to a well-known service domain. - [SAFE]: Credentials are managed securely. The skill instructs users to provide their API key via an environment variable or a local
.envfile, which is a standard and recommended practice for avoiding hardcoded secrets. All API key references in the provided code are non-functional placeholders.
Audit Metadata