evowebai-website-builder
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXFILTRATION]: The skill transmits user-provided website descriptions to the EvoWeb API at
api.web.oto.dev. This is the core functional purpose of the skill and is performed over encrypted HTTPS connections. - [EXTERNAL_DOWNLOADS]: The skill retrieves status updates and generated website URLs from the EvoWeb API. All remote interactions are limited to the intended service infrastructure (
evoweb.aiandoto.dev). - [CREDENTIALS_UNSAFE]: The skill correctly manages sensitive credentials by requiring the
EVOWEB_API_KEYto be provided via environment variables, rather than hardcoding secrets in the instructions or scripts.
Audit Metadata