flowstudio-power-automate-build
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructs users to store sensitive credentials in environment variables (
FLOWSTUDIO_MCP_TOKEN), which is a secure practice for secret management. - [SAFE]: Network operations in the provided Python helper are limited to the official service endpoint at
mcp.flowstudio.app. - [SAFE]: The instructions include a mandatory safety check requiring the agent to ask for user confirmation before triggering or testing flows that have real-world side effects (e.g., sending emails or posting messages).
- [SAFE]: No patterns of prompt injection, obfuscation, or unauthorized data exfiltration were detected in the skill instructions or reference files.
- [SAFE]: The skill uses standard Power Automate schemas and documented MCP tool calls for its operations.
Audit Metadata