enrichment-nyne
Pass
Audited by Gen Agent Trust Hub on Jul 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill provides bash commands for extracting API keys and base URLs from a local JSON file (
~/.gooseworks/credentials.json). These commands usepython3 -cto parse the file, which is a standard method for managing credentials in this platform's context. - [DATA_EXFILTRATION]: The skill defines several parameters such as
callback_urlfor various API endpoints. These are intended for webhook functionality provided by the service and do not represent a data exfiltration risk in the context of the skill's primary purpose. - [EXTERNAL_DOWNLOADS]: The skill mentions
npx gooseworks loginfor setup, which is a standard procedure for the associated platform to authenticate users and fetch necessary credentials. - [CREDENTIALS_UNSAFE]: The skill provides instructions for managing credentials using a local file and environment variables. It does not contain any hardcoded secrets; it uses placeholders and standard credential management practices.
Audit Metadata