camino-real-estate
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Communicates with the vendor's official API at
api.getcamino.aito retrieve geocoding and location context data. - [COMMAND_EXECUTION]: Utilizes
curlandjqfor API interaction. The shell script correctly usesjq's argument passing (--arg,--argjson) and URL encoding filters (@uri) to prevent shell injection vulnerabilities from user-supplied address data. - [CREDENTIALS_UNSAFE]: Authenticates requests via the
CAMINO_API_KEYenvironment variable, which is a standard and secure practice for managing API credentials in this environment.
Audit Metadata