twelvedata
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses the official Twelve Data API (api.twelvedata.com) to provide financial market data. All network requests are routed through standard HTTP clients (aiohttp and core.http_client.proxied_get) which is expected for this type of integration.
- [SAFE]: Sensitive information (TWELVEDATA_API_KEY) is managed via environment variables and is never hardcoded. The instructions correctly guide the user to provide this key through the environment, which is a security best practice.
- [SAFE]: The prompt instructions in SKILL.md focus on providing accurate usage guidance and preventing common user errors (such as using the wrong tool for crypto data). There are no attempts at prompt injection, behavioral overrides, or safety filter bypasses.
- [SAFE]: All dependencies are internal or standard platform components. There is no evidence of remote code execution, persistence mechanisms, or privilege escalation.
Audit Metadata