ai-customer-journey-map

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides a Python runner script (scripts/run.py) intended for the user to execute. This script facilitates communication between the local environment and the AI Skills API.
  • [DATA_EXFILTRATION]: The scripts/run.py script transmits parameters provided by the user to the official vendor domain https://ai-skills.ai. This is the expected and documented behavior of the skill to process information via its backend service.
  • [CREDENTIALS_UNSAFE]: The skill requires the use of an AISKILLS_API_KEY provided via environment variables. This follows standard security practices for managing secrets without hardcoding them in the source code.
  • [EXTERNAL_DOWNLOADS]: The metadata in references/skill.json references an external source URL (skillsmp.com) which is identified as the origin of the skill's logic template.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 03:30 AM
Security Audit — agent-trust-hub — ai-customer-journey-map