telnyx-messaging-go
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides standard functionality for sending and receiving messages via the Telnyx API. No malicious patterns, obfuscation, or unauthorized data access were detected.
- [SAFE]: Credential management correctly uses environment variables (TELNYX_API_KEY), avoiding hardcoded secrets.
- [SAFE]: Webhook verification is implemented using Ed25519 signature checks, ensuring the authenticity of inbound data.
- [SAFE]: External dependencies are limited to the official Telnyx Go SDK repository (github.com/team-telnyx/telnyx-go).
- [PROMPT_INJECTION]: The skill ingests untrusted data from inbound messages. 1. Ingestion points: message.received webhook in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: client.Messages.Send, client.Messages.Schedule. 4. Sanitization: Not explicitly handled in SDK usage examples. This surface is inherent to messaging functionality and is assessed as SAFE in the context of the skill's primary purpose.
Audit Metadata