southwest
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [SAFE]: The skill uses browser automation to scrape flight data from Southwest Airlines. This is a necessary approach as the airline does not participate in Global Distribution Systems (GDS) or provide a public API.\n- [COMMAND_EXECUTION]: The skill executes Python scripts and Docker containers to perform its tasks. These operations are consistent with its documented functionality for flight searching and monitoring.\n- [CREDENTIALS_UNSAFE]: User credentials for the optional reservation check feature are managed through environment variables (SW_USERNAME, SW_PASSWORD). This is a standard and recommended practice for handling user-provided secrets in this context.\n- [EXTERNAL_DOWNLOADS]: The skill installs the patchright library and pulls a Docker image from the author's GitHub Container Registry. These resources are necessary for the skill's core functionality and are sourced from the author's own infrastructure.\n- [SAFE]: The reservation monitoring script includes a protective blocklist and safety checks to ensure the agent cannot accidentally perform sensitive actions, such as changing or canceling flights.
Audit Metadata