stripe
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, command injection, or obfuscation techniques were identified in the skill content.\n- [COMMAND_EXECUTION]: Administrative functions including product management (addProduct, updateProduct, deleteProduct) and Stripe configuration (setStripeConfiguration) are properly protected using an access control module, ensuring only authorized administrators can execute these operations.\n- [EXTERNAL_DOWNLOADS]: The skill utilizes external dependencies
caffeineai-stripe,caffeineai-http-outcalls, andcaffeineai-authorization. These are identified as vendor-specific resources within thecaffeinelabsecosystem and are appropriate for the skill's stated purpose.\n- [CREDENTIALS_UNSAFE]: The skill handles Stripe secret keys through a dedicated administrative setup function. The configuration is stored in private actor state and is not exposed via public queries or functions, maintaining the confidentiality of the credentials.
Audit Metadata