gsc-submit
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill manages sensitive Google OAuth credentials (client ID, secret, and refresh token) exclusively through environment variables, following security best practices to avoid exposure in codebase or logs.
- [SAFE]: Network activity is confined to verified Google services (
oauth2.googleapis.comandindexing.googleapis.com). The script also includes a sanitization function to redact credential values from error messages before they are logged or displayed. - [SAFE]: The included Node.js script performs input validation by verifying that URLs use the
http:orhttps:protocol and deduplicates entries before processing. - [SAFE]: The AI instructions provide clear security boundaries, directing the agent to treat extracted URLs as literal strings rather than instructions and mandating a user confirmation step before submitting routes discovered during codebase scanning.
Audit Metadata