enrichment-nyne

Pass

Audited by Gen Agent Trust Hub on Jul 2, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides bash commands for extracting API keys and base URLs from a local JSON file (~/.gooseworks/credentials.json). These commands use python3 -c to parse the file, which is a standard method for managing credentials in this platform's context.
  • [DATA_EXFILTRATION]: The skill defines several parameters such as callback_url for various API endpoints. These are intended for webhook functionality provided by the service and do not represent a data exfiltration risk in the context of the skill's primary purpose.
  • [EXTERNAL_DOWNLOADS]: The skill mentions npx gooseworks login for setup, which is a standard procedure for the associated platform to authenticate users and fetch necessary credentials.
  • [CREDENTIALS_UNSAFE]: The skill provides instructions for managing credentials using a local file and environment variables. It does not contain any hardcoded secrets; it uses placeholders and standard credential management practices.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 2, 2026, 06:17 AM
Security Audit — agent-trust-hub — enrichment-nyne