stackone-platform
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill fetches documentation from docs.stackone.com. While this domain is not on the predefined Trusted Sources list, it is the official documentation site for the tool described. The fetched data is intended for information retrieval only.\n- [INDIRECT_PROMPT_INJECTION] (LOW): The skill has an attack surface because it processes untrusted content from the web.\n
- Ingestion points: https://docs.stackone.com/llms.txt and various category-specific documentation pages referenced in references/api-categories.md.\n
- Boundary markers: Absent. The skill does not instruct the agent to ignore instructions embedded within the fetched documentation.\n
- Capability inventory: The skill primarily generates text responses and provides curl command examples to the user. It does not contain scripts that execute subprocesses, perform file-write operations, or use eval/exec functions.\n
- Sanitization: Absent. External content is fetched and used to inform agent responses without explicit sanitization steps.\n- [CREDENTIALS_UNSAFE] (SAFE): No hardcoded secrets were found. The skill uses standard placeholders such as 'YOUR_API_KEY' and 'v1.{region}.xxxxx' for instructional purposes.
Audit Metadata