ai-customer-support

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides a Python script (scripts/run.py) intended to be executed by the user. This script facilitates communication between the local environment and the vendor's API at ai-skills.ai.
  • [EXTERNAL_DOWNLOADS]: The scripts/run.py script makes network requests to https://ai-skills.ai to process user input. This is the official domain of the skill vendor ('allinherog-star') as documented in the metadata and instructions.
  • [CREDENTIALS_SAFE]: The skill requires an AISKILLS_API_KEY environment variable for authentication. It correctly avoids hardcoding secrets and instructs users on how to obtain and provide their own keys securely via environment variables.
  • [DATA_EXFILTRATION]: While the skill transmits user-provided parameters (such as documentation links or text) to an external API, this is the stated primary purpose of the skill. The destination ai-skills.ai is the vendor's official service endpoint.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 03:30 AM
Security Audit — agent-trust-hub — ai-customer-support