custom-object-management

Pass

Audited by Gen Agent Trust Hub on Jun 15, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No malicious patterns, obfuscation, or unauthorized data exfiltration attempts were detected.
  • [COMMAND_EXECUTION]: The skill utilizes the official hubspot CLI tool to perform administrative tasks on CRM schemas. These operations are scoped to the vendor's platform and require specific app permissions (crm.schemas.custom.write) as noted in the instructions.
  • [PROMPT_INJECTION]: The skill possesses an indirect injection surface through the processing of external schema data. 1. Ingestion points: Schema definitions are read via hubspot schemas get. 2. Boundary markers: Absent. 3. Capability inventory: The skill can create, update, and delete CRM schemas. 4. Sanitization: The risk is mitigated by a mandatory dry-run and digest-based confirmation flow that requires human oversight before high-impact changes are applied.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 15, 2026, 01:14 PM