ahrefs
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses standard CLI tools like
curlandjqto interact with the Ahrefs API. These commands are well-defined and serve the primary purpose of the skill. - [DATA_EXFILTRATION]: Network activity is restricted to
api.ahrefs.com, which is the official and well-known service domain for Ahrefs. There is no evidence of sensitive local files being accessed or transmitted. - [CREDENTIALS_UNSAFE]: Authentication is handled via the
AHREFS_TOKENenvironment variable usingprintenv. This is a secure and recommended method for providing credentials to agent skills without hardcoding them.
Audit Metadata