Skills
skills/deepsourcecorp/skills/autofix-bot-api/Gen Agent Trust Hub

autofix-bot-api

Pass

Audited by Gen Agent Trust Hub on Mar 16, 2026

Risk Level: SAFE
Full Analysis
  • [DATA_EXFILTRATION]: The skill packages the local git repository into a bundle and uploads it to the Autofix Bot service at api.autofix.bot. While this involves sending source code to a remote server, it is the primary and documented purpose of the skill for performing security analysis.
  • [COMMAND_EXECUTION]: Executes bundled bash scripts (sync_repo.sh, poll_analysis.sh) that use standard tools like curl, git, and python3 to manage API communication and repository synchronization.
  • [COMMAND_EXECUTION]: The skill enables the application of code fixes retrieved from the remote API via the git apply command, allowing automated remediation of detected vulnerabilities.
  • [EXTERNAL_DOWNLOADS]: Fetches data and code patches from the official vendor API endpoint (api.autofix.bot) to provide analysis results and fixes to the user.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 16, 2026, 02:42 PM