dropbox
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows security best practices by recommending the use of environment variables (
process.env.APIDECK_API_KEY,process.env.APIDECK_APP_ID) to manage sensitive credentials rather than hardcoding them. - [EXTERNAL_DOWNLOADS]: The skill references the official
@apideck/unifyNPM package and fetches OpenAPI specifications fromspecs.apideck.com. These are legitimate resources from the verified author's own infrastructure. - [SAFE]: Network operations, such as those demonstrated in the Proxy API example, are directed to the official
unify.apideck.comdomain. Documentation links point to well-known, trusted services includingapideck.comanddropbox.com. - [SAFE]: The skill metadata and instructional content align with the stated purpose of providing a Dropbox connector, with no evidence of prompt injection, obfuscation, or persistence mechanisms.
Audit Metadata