embedding-ft
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses npx to fetch and run the @tiangong-lca/cli package from the NPM registry. This is a standard mechanism for utilizing the vendor's command-line tools.
- [COMMAND_EXECUTION]: The run-embedding-ft.mjs script facilitates the execution of CLI commands. It wraps the tiangong admin embedding-run command and allows passing through user-defined arguments.
- [CREDENTIALS_UNSAFE]: Instructions direct the user to provide an API key via the TIANGONG_LCA_API_KEY environment variable. The skill uses placeholders and does not leak or hardcode any actual secrets.
Audit Metadata