contentstack-delivery-sdk-assistant
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a specialized assistant for generating code for the Contentstack Delivery SDK, focusing on read-only operations.
- [EXTERNAL_DOWNLOADS]: The skill references official Node.js packages '@contentstack/delivery-sdk' and '@contentstack/utils' from a well-known service provider.
- [CREDENTIALS_UNSAFE]: Instructions explicitly prevent the inclusion of real API keys or tokens in generated code, mandating the use of descriptive placeholder strings.
- [COMMAND_EXECUTION]: The skill implements a 'plan' mode by default, requiring the agent to present code for review and only perform file operations upon explicit user request.
- [DATA_EXFILTRATION]: The skill is designed to interact with a well-known CMS service and does not contain patterns for unauthorized data transfer to untrusted domains.
- [PROMPT_INJECTION]: The skill contains no instructions to bypass safety filters or override agent behavior; it uses clear boundaries such as review-first workflows to mitigate risks associated with processing natural language inputs.
Audit Metadata