booking-notify
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill instructions or reference materials.
- [COMMAND_EXECUTION]: Executes standard commands for environment setup, building local components with
bun, and deploying a relay service to Google Cloud Run viagcloud. - [EXTERNAL_DOWNLOADS]: Interacts with trusted service APIs including Pushover, Cal.com, and Google Cloud.
- [DATA_EXFILTRATION]: Handles notification delivery to user-configured channels; all network operations are consistent with the skill's primary purpose.
- [PROMPT_INJECTION]: The skill ingests external booking data (notes/names) for notifications. 1. Ingestion: sync.ts fetches from Cal.com API. 2. Boundaries: Templates use curly-brace delimiters. 3. Capabilities: Network calls via curl and script execution via bun. 4. Sanitization: Formatting is cleaned via stripHtmlForPushover before delivery.
Audit Metadata