fix-lifecycle-stages
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs standard CRM data operations using the official HubSpot API. Analysis of all script files (before.py, execute.py, after.py) confirms they only interact with the 'lifecyclestage' property and associated company contexts.
- [COMMAND_EXECUTION]: The skill uses Python's
requestslibrary to make authorized calls to the HubSpot API. This is the intended behavior for a HubSpot integration tool. - [DATA_EXFILTRATION]: No data is sent to non-whitelisted or suspicious domains. All network operations are directed to
api.hubapi.com(HubSpot's official API endpoint). - [CREDENTIALS_UNSAFE]: The skill follows security best practices by loading the
HUBSPOT_ACCESS_TOKENfrom an environment variable (.env) rather than hardcoding credentials. - [EXTERNAL_DOWNLOADS]: Dependencies (requests, python-dotenv) are standard, well-known packages from the Python Package Index (PyPI).
Audit Metadata