Skills
skills/truefoundry/tfy-gateway-skills/secrets/Gen Agent Trust Hub

secrets

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill manages secrets on the TrueFoundry platform using a dedicated helper script (tfy-api.sh) that implements authenticated API communication.
  • [SAFE]: The instructions include a strict security policy for credential handling, specifically prohibiting the agent from accepting, logging, or displaying raw secret values.
  • [SAFE]: It utilizes a restrictive allowed-tools configuration in the YAML frontmatter, limiting shell execution scope to the skill's own API helper script.
  • [SAFE]: External dependencies are limited to official vendor resources, such as the truefoundry Python package and the TrueFoundry API endpoints.
  • [SAFE]: The helper script tfy-api.sh includes basic security validations, such as preventing path traversal in API endpoints and safely parsing .env files without using eval.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 08:24 PM