Skills
skills/anthropics/knowledge-work-plugins/virtual-agent/web/Gen Agent Trust Hub

virtual-agent/web

Pass

Audited by Gen Agent Trust Hub on May 31, 2026

Risk Level: SAFE
Full Analysis
  • External Resource Integration: The skill references and fetches the Zoom Virtual Agent SDK from official Zoom domains (us01ccistatic.zoom.us). This is a standard integration pattern for web-based SDKs from well-known service providers.
  • Safe Credential Management: Implementation examples correctly utilize placeholders like YOUR_API_KEY for authentication parameters, ensuring that no real credentials or sensitive secrets are hardcoded within the documentation.
  • Content Security Policy (CSP) Awareness: The documentation includes proactive guidance on configuring Content Security Policies to allow the necessary SDK components, which is a recommended security practice for modern web applications.
  • Standard API Surface: The methods and events described (e.g., updateUserContext, show, hide) are consistent with the documented functionality of the Zoom Virtual Agent SDK and do not indicate any hidden or suspicious capabilities.
Audit Metadata
Risk Level
SAFE
Analyzed
May 31, 2026, 07:56 AM
Security Audit — agent-trust-hub — virtual-agent/web