whatsapp-bot-builder
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows standard development practices for the official WhatsApp Business Platform. All code snippets use legitimate APIs and protocols.
- [DATA_EXPOSURE_AND_EXFILTRATION]: Network operations are directed at official Meta domains (graph.facebook.com), which are recognized as well-known and trusted services. All environment variable examples use safe placeholder values.
- [INDIRECT_PROMPT_INJECTION]: The skill describes receiving data via webhooks, which constitutes an ingestion point for untrusted data.
- Ingestion points: incoming POST requests to
/webhookinSKILL.md. - Boundary markers: Not explicitly provided in the snippets; the code acts as a pass-through.
- Capability inventory: The skill allows sending messages and handling media via
fetchcalls to official APIs. - Sanitization: Standard HTTP handling is present, but NL sanitization is left to the developer. This is typical for a framework-style skill and does not represent a malicious finding.
Audit Metadata