Skills
skills/iblai/vibe/iblai-auth/Gen Agent Trust Hub

iblai-auth

Pass

Audited by Gen Agent Trust Hub on May 20, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches configuration templates, brand guidelines, and project documentation from the vendor's official GitHub repositories.
  • [REMOTE_CODE_EXECUTION]: It manages the installation of the vendor's CLI tool (iblai-app-cli) through official package registries (PyPI, npm) and provides instructions for building from source.
  • [COMMAND_EXECUTION]: Orchestrates the cloning of a project starter template (vibe-starter) and uses the iblai CLI to patch application files and configure the environment.
  • [COMMAND_EXECUTION]: Recommends updating shell profile files (such as ~/.bashrc or ~/.zshrc) to include the local binary path in the environment's PATH variable.
  • [DATA_EXFILTRATION]: Utilizes curl and PUT operations to transmit authentication tokens and application metadata to the vendor's API endpoints for synchronization and customization. This behavior is essential for the stated purpose of the skill.
Audit Metadata
Risk Level
SAFE
Analyzed
May 20, 2026, 01:38 PM
Security Audit — agent-trust-hub — iblai-auth