telnyx-numbers-compliance-java
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical guide for the Telnyx Java SDK. No malicious commands, obfuscated content, or unauthorized data exfiltration patterns were detected.
- [SAFE]: Secure credential management is encouraged through the use of environment variables via the
TelnyxOkHttpClient.fromEnv()method, avoiding hardcoded secrets. - [PROMPT_INJECTION]: The skill interacts with external API data and possesses write capabilities (creating/deleting resources), which presents a standard surface for indirect prompt injection. This risk is inherent to the skill's primary purpose of API integration.
- Ingestion points: API response data from Telnyx compliance endpoints (e.g.,
/documents,/user_addresses) documented inSKILL.md. - Boundary markers: No specific delimiting or safety instructions are provided for handling API-returned content.
- Capability inventory: The skill includes operations to create, update, and delete resources (documents, requirement groups, addresses) via the Java SDK.
- Sanitization: Standard SDK examples are provided without explicit input validation or sanitization logic shown.
Audit Metadata