Skills
skills/indykite/skills/indykite-ciq-add-property/Gen Agent Trust Hub

indykite-ciq-add-property

Pass

Audited by Gen Agent Trust Hub on May 28, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill provides a Bash script, scripts/execute.sh, which facilitates communication with the IndyKite REST API. The script is implemented using Bash arrays to safely construct and execute curl commands, mitigating common shell injection risks.
  • [EXTERNAL_DOWNLOADS]: The skill and its accompanying scripts interact with official IndyKite domains, such as api.indykite.com and developer.indykite.com. These network operations are intrinsic to the skill's purpose of policy management and query execution on the IndyKite platform.
  • [CREDENTIALS_UNSAFE]: No hardcoded credentials or secrets were found within the skill's files. The instructions and scripts correctly guide users to use environment variables (API_KEY, SERVICE_ACCOUNT_TOKEN, BEARER_TOKEN) for handling sensitive authentication tokens.
Audit Metadata
Risk Level
SAFE
Analyzed
May 28, 2026, 06:54 AM
Security Audit — agent-trust-hub — indykite-ciq-add-property