review-bounced-contacts
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill utilizes environment variables to manage sensitive HubSpot API tokens, aligning with security best practices.
- [SAFE]: The Python snippet uses the official HubSpot SDK for data retrieval without any suspicious or unauthorized network activity.
- [SAFE]: No prompt injection, obfuscation, or remote code execution patterns were detected in the skill content or metadata.
- [SAFE]: The skill processes contact data from an external API (HubSpot) as part of its administrative function. This ingestion point is managed through manual review, which mitigates indirect prompt injection risks.
- Ingestion points: Data is fetched from the HubSpot CRM API in SKILL.md.
- Boundary markers: None identified.
- Capability inventory: API search and suggested deletion.
- Sanitization: None specified for CRM field values.
Audit Metadata