generating-rest-apis
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate tool for scaffolding API code and contains no malicious code or prompt injection attempts.
- [DATA_EXFILTRATION]: While the skill accesses project-specific data like OpenAPI specs and database models to generate code, it does so locally and lacks any commands for external data transmission or exfiltration.
- [COMMAND_EXECUTION]: Use of the Bash tool is confined to the
api:rest-*namespace, which is a restricted environment for project scaffolding and represents a safe use of shell capabilities.
Audit Metadata