antv-l7
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references several external map tile services and CDN resources. These include official AntV resources (gw.alipayobjects.com, antv.antgroup.com), and well-known map providers such as Gaode Map (amap.com), Mapbox (mapbox.com), MapLibre, OpenStreetMap, CartoDB, and Stamen. These are standard external resources for a map visualization library.
- [CREDENTIALS_SAFE]: The documentation contains multiple code examples requiring API tokens or keys (e.g., GaodeMap token, Mapbox token). These are correctly provided as descriptive placeholders (e.g., 'your-amap-key', 'YOUR_MAPBOX_TOKEN') rather than actual sensitive secrets.
- [COMMAND_EXECUTION]: Code examples demonstrate standard browser-side JavaScript and DOM manipulation. No suspicious shell commands, privilege escalation attempts, or unauthorized system access patterns were detected.
- [DATA_EXPOSURE]: The skill provides examples of loading data via GeoJSON, CSV, and JSON formats. These examples use public sample data or placeholders, and no sensitive file path access or unauthorized data exfiltration patterns were found.
Audit Metadata