twitch
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses curl and jq to perform read-only API requests. These commands are restricted to querying metadata about streams, users, games, and clips from Twitch's official API.
- [CREDENTIALS_UNSAFE]: Authentication is properly managed using environment variables (TWITCH_CLIENT_ID and TWITCH_ACCESS_TOKEN), ensuring no API keys or tokens are hardcoded within the skill code.
- [EXTERNAL_DOWNLOADS]: All network traffic is directed to api.twitch.tv, which is the official and trusted domain for the Twitch Helix API.
Audit Metadata