hubspot
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill communicates with
api.hubapi.comto manage CRM objects and CMS content. This is the official domain for HubSpot, which is a well-known service, and the network activity is strictly limited to the skill's stated purpose. - [COMMAND_EXECUTION]: Examples use
curlandjqfor shell environments andInvoke-RestMethodfor PowerShell. These commands are used for legitimate API interaction and do not involve privilege escalation or persistence mechanisms. - [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface as it ingests and processes data from external CRM records.
- Ingestion points: Data retrieved from various
api.hubapi.comendpoints as shown inSKILL.md. - Boundary markers: None are specified in the example instructions or commands.
- Capability inventory: The skill allows for reading and writing (POST/PATCH) CRM data via network requests.
- Sanitization: No explicit sanitization or validation logic is provided for the data returned from the API before it is processed by the agent.
Audit Metadata