telnyx-sip-integrations-java
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes the official Telnyx Java SDK (
com.telnyx.sdk:telnyx-java:6.26.0) for all demonstrated operations, which is consistent with the skill's stated purpose and author. - [SAFE]: Sensitive configuration data, such as private keys for Dialogflow service accounts and cloud storage credentials, are represented using benign placeholder values in the code examples.
- [COMMAND_EXECUTION]: The skill provides examples for managing SIP trunking and external voice integrations. These operations involve configuring service-level settings through the SDK and do not execute arbitrary shell commands on the host.
- [DATA_EXFILTRATION]: Although the skill demonstrates uploading media from a remote URL, this is a standard feature of the Telnyx media service and uses a well-known placeholder domain (example.com) for demonstration. No unauthorized exfiltration of local sensitive data was detected.
- [SAFE]: The skill includes code for retrieving external data such as recording transcriptions. While this provides a potential surface for indirect prompt injection, it is a core function of the API integration and does not include any logic that would process the data in an unsafe manner.
Audit Metadata