Skills
skills/vm0-ai/vm0-skills/zapsign/Gen Agent Trust Hub

zapsign

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: Uses system commands including curl, jq, and base64 to prepare request payloads and interact with the ZapSign API.
  • [EXTERNAL_DOWNLOADS]: Establishes network connections to official ZapSign API subdomains (sandbox.api.zapsign.com.br and api.zapsign.com.br) to process electronic signature requests.
  • [DATA_EXFILTRATION]: Transmits document metadata, content (provided via PDF URLs or Base64 encoding), and signer details (names, emails, phone numbers) to the external ZapSign service. This behavior is required for the skill to fulfill its primary function of managing electronic signatures.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 02:02 PM