ai-model-nodejs
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill instructs users to install @cloudbase/node-sdk, which is the official package for Tencent CloudBase services.
- [CREDENTIALS_UNSAFE] (SAFE): Initialization examples correctly use placeholders such as <YOUR_SECRET_ID> and <YOUR_SECRET_KEY> to prevent hardcoding of sensitive information.
- [PROMPT_INJECTION] (LOW): The skill processes user-provided content via messages and prompts for text and image generation, which constitutes a surface for indirect prompt injection through external data ingestion.
Audit Metadata