Skills
skills/iflytek/ifly-skills/iflytek-translate/Gen Agent Trust Hub

iflytek-translate

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill implementation uses only Python standard libraries and does not download or execute any external code.
  • [DATA_EXPOSURE]: The skill transmits text to the official iFlytek domain (itrans.xfyun.cn) for translation. This behavior is documented and aligns with the skill's primary function. Access to local files is restricted to paths explicitly provided via command-line arguments, with no hardcoded access to sensitive system paths.
  • [CREDENTIALS_UNSAFE]: No hardcoded credentials were found in the source code. Authentication details (APP_ID, API_KEY, API_SECRET) are correctly handled through environment variables as per developer best practices.
  • [COMMAND_EXECUTION]: The script uses standard argparse for handling inputs and does not invoke arbitrary shell commands or subprocesses based on user-supplied text.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 03:29 AM
Security Audit — agent-trust-hub — iflytek-translate