byted-security-skillsscanner
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary functionality involves zipping and uploading local file directories to official Volcengine API endpoints (
open.volcengineapi.com). This behavior is consistent with its stated purpose as a security scanner for the Volcengine platform. - [SAFE]: Sensitive API credentials (Access Key and Secret Key) are retrieved from environment variables or local configuration files, following secure management practices for secrets.
- [SAFE]: Python dependencies are restricted to the official
volcengineSDK and the widely-usedrequestslibrary.
Audit Metadata