telnyx-voice-gather-java
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or security vulnerabilities were detected in the skill. The content consists of standard API documentation and Java code examples for telecommunications services.
- [EXTERNAL_DOWNLOADS]: The skill utilizes the official Telnyx Java SDK (
com.telnyx.sdk:telnyx). This is a legitimate vendor resource used to interact with the Telnyx API. - [CREDENTIALS_UNSAFE]: The skill promotes secure credential management by demonstrating the use of
TelnyxOkHttpClient.fromEnv()to load API keys from the system environment instead of hardcoding them in source code. - [COMMAND_EXECUTION]: The provided Java snippets are limited to API interactions and standard error handling. There are no attempts to execute arbitrary shell commands or perform unauthorized file system operations.
- [PROMPT_INJECTION]: The instructions do not contain any patterns aimed at overriding agent behavior or bypassing safety filters. Furthermore, the skill provides clear instructions on verifying cryptographic signatures for webhooks, which enhances the security posture of the implementation.
Audit Metadata