iblai-login
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFE
Full Analysis
- [CREDENTIALS_UNSAFE]: The skill is designed to manage platform credentials, including organization keys and API tokens. It extracts a session token (
dm_token) from the browser's local storage to mint a long-lived Platform API Token. It follows secure practices by instructing the agent to store these values in a.envfile and verify that.envis listed in.gitignoreto prevent credential leakage to git repositories. - [COMMAND_EXECUTION]: Employs a
curlcommand to verify the validity of the generated API token against the ibl.ai production API. This is a standard connectivity and authentication check. - [EXTERNAL_DOWNLOADS]: Interacts with
api.iblai.appandlogin.iblai.appto facilitate authentication and token management. These are legitimate vendor domains associated with the skill's primary purpose.
Audit Metadata