mercury
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill uses
bash -cto executecurlcommands, which is a documented method for ensuring environment variables are correctly handled within the agent's shell environment. - [EXTERNAL_DOWNLOADS]: All network operations are directed to Mercury's official API (
api.mercury.com) and documentation sites. This includes fetching transaction data and downloading account statements. Mercury is recognized as a well-known financial service provider. - [SAFE]: No obfuscation, unauthorized data exfiltration, or malicious instruction patterns were detected. The skill's behavior is entirely consistent with its described purpose of managing banking operations.
Audit Metadata