ai-customer-journey-map
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides a Python runner script (
scripts/run.py) intended for the user to execute. This script facilitates communication between the local environment and the AI Skills API. - [DATA_EXFILTRATION]: The
scripts/run.pyscript transmits parameters provided by the user to the official vendor domainhttps://ai-skills.ai. This is the expected and documented behavior of the skill to process information via its backend service. - [CREDENTIALS_UNSAFE]: The skill requires the use of an
AISKILLS_API_KEYprovided via environment variables. This follows standard security practices for managing secrets without hardcoding them in the source code. - [EXTERNAL_DOWNLOADS]: The metadata in
references/skill.jsonreferences an external source URL (skillsmp.com) which is identified as the origin of the skill's logic template.
Audit Metadata