Skills
skills/bytedance/agentkit-samples/byted-redis/Gen Agent Trust Hub

byted-redis

Pass

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses uvx to download and execute the MCP server directly from the official Volcengine GitHub repository (github.com/volcengine/mcp-server.git). This is a legitimate distribution method for standalone skills provided by the vendor.
  • [CREDENTIALS_UNSAFE]: The skill requires VOLCENGINE_ACCESS_KEY and VOLCENGINE_SECRET_KEY. It correctly instructs the user to provide these via environment variables rather than hardcoding them. The scripts check for the presence of these variables before execution.
  • [COMMAND_EXECUTION]: Shell scripts (start_volcengine_redis_mcp.sh, etc.) are provided for process management. These scripts perform standard operations such as starting background processes with nohup, managing PID files, and rotating logs.
  • [DATA_EXFILTRATION]: No unauthorized data exfiltration patterns were detected. Network operations are restricted to communication with Volcengine services and the official GitHub repository for dependency fetching.
Audit Metadata
Risk Level
SAFE
Analyzed
May 4, 2026, 03:13 AM
Security Audit — agent-trust-hub — byted-redis