sms-mail
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical documentation and template repository for Java/Spring Boot developers. No executable malicious logic for the agent environment was found.
- [SAFE]: Best practices for credential management are demonstrated; the code snippets and configuration files use placeholders (e.g.,
${ALIYUN_SMS_KEY},${MAIL_PASSWORD}) rather than hardcoded secrets. - [SAFE]: References to external services are limited to well-known technology providers such as Aliyun, Tencent Cloud, Gmail, and NetEase (163), which are used neutrally as examples for SMTP and SMS gateway configuration.
- [SAFE]: The skill includes explicit sections on security, recommending rate limiting (SMS bombing prevention), expiration times for CAPTCHAs, and the use of authorization codes instead of login passwords for email services.
- [SAFE]: No patterns of prompt injection, obfuscation, or unauthorized system access were detected across the provided files.
Audit Metadata