project-files
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes curl commands to interact with the Layerproof API endpoints for uploading, updating, and deleting project files. These operations are scoped to the project environment and controlled via environment variables.- [EXTERNAL_DOWNLOADS]: The skill facilitates the retrieval of temporary download URLs and file metadata from the Layerproof API, which is the intended functional purpose of the tool.- [CREDENTIALS_UNSAFE]: The skill implements secure credential management by instructing the agent to use the LAYERPROOF_API_KEY environment variable for the X-API-KEY header instead of hardcoding sensitive tokens.
Audit Metadata