telnyx-sip-integrations-javascript
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the 'telnyx' NPM package. This is the official JavaScript SDK provided by the vendor (Telnyx) and is considered a safe, trusted dependency.
- [DATA_EXPOSURE]: The skill correctly demonstrates using environment variables (
process.env['TELNYX_API_KEY']) to handle sensitive API keys, avoiding hardcoded secrets. - [INDIRECT_PROMPT_INJECTION]: The skill includes functions that retrieve external data, such as
transcription_textfrom call recordings. - Ingestion points: Data is fetched via
client.recordingTranscriptions.listandretrievemethods inSKILL.md. - Boundary markers: None are present in the provided examples.
- Capability inventory: The skill provides capabilities to create, update, and delete resources via the Telnyx SDK, but does not perform OS-level command execution or dynamic code evaluation.
- Sanitization: The examples do not demonstrate sanitization of retrieved transcription text before use.
Audit Metadata