trello
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill contents or logic.- [COMMAND_EXECUTION]: The skill uses
curlandjqto communicate with the Trello API (api.trello.com). These operations are consistent with the primary purpose of managing Trello resources.- [SAFE]: The skill processes card names, descriptions, and comments from the Trello API, creating an attack surface for indirect prompt injection. 1. Ingestion points: Card data fromapi.trello.com. 2. Boundary markers: Absent. 3. Capability inventory: Shell execution for API calls. 4. Sanitization: None; external data is integrated into the agent context via JSON parsing.
Audit Metadata