openai-image-gen
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS] (SAFE): The skill makes network requests to the OpenAI API (api.openai.com) to generate images. This is the intended and documented function of the tool.
- [DATA_EXFILTRATION] (SAFE): There is no evidence of sensitive data exposure. The script only transmits image prompts and the required API key to the legitimate service provider.
- [CREDENTIALS_UNSAFE] (SAFE): The skill correctly manages secrets by retrieving the OpenAI API key from environment variables or command-line arguments, avoiding hardcoded credentials.
- [COMMAND_EXECUTION] (SAFE): The script does not utilize subprocesses or shell commands, relying instead on Python's built-in file and network libraries.
Audit Metadata