truefoundry-access-tokens
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a robust security policy for credential handling, specifically instructing the agent to never repeat, store, or log token values, and providing masked previews by default.
- [SAFE]: Network operations are performed through a restricted authenticated curl wrapper script (
tfy-api.sh) which includes protections against path traversal and handles API keys securely via headers. - [SAFE]: The instructions include a specific security warning against fetching third-party content from external URLs to prevent indirect prompt injection during version checks.
- [SAFE]: The skill uses official vendor dependencies and standard CLI tools without requiring elevated privileges or persistence mechanisms.
Audit Metadata