geo-publish
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE]: The skill handles a private key (GEO_PRIVATE_KEY) but correctly advises against exposing it in chat history or shell logs. It instructs the user to store the key in a local .env.geo-publish file and add it to .gitignore, which is a security best practice for managing secrets in a development environment.
- [EXTERNAL_DOWNLOADS]: The skill communicates with the official Geo protocol GraphQL API at testnet-api.geobrowser.io. This is a legitimate service for the skill's intended purpose of publishing to the knowledge graph.
- [COMMAND_EXECUTION]: The skill executes local utility scripts (bin/whoami.mjs and bin/publish-entity.mjs) and requires a one-time dependency installation (bun install or npm install) within the skill's own directory. These operations are restricted to the skill's environment and do not pose a risk of arbitrary command execution on the user's system.
- [PROMPT_INJECTION]: The instructions regarding the protection of private keys and the use of the ! command prefix are security guidelines intended to protect user privacy. These are not malicious attempts to override agent behavior or bypass safety filters.
Audit Metadata