skyfire
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the provided skill files.
- [EXTERNAL_DOWNLOADS]: The skill documentation describes interactions with the vendor's official endpoints at
api.skyfire.xyz,mcp.skyfire.xyz, andapp.skyfire.xyz. It also referencesmcp.dappier.com, which is a well-known service in the context of Model Context Protocol (MCP) integrations. - [DATA_EXFILTRATION]: The skill provides explicit instructions on how to securely handle API keys using environment variables. It includes anti-patterns (incorrect examples) that warn against hardcoding secrets or sharing keys across different agent roles.
- [PROMPT_INJECTION]: The instructions are focused on operational logic, token management, and security verification. No attempts to override system prompts or bypass safety filters were found.
Audit Metadata