get-market-quotes

Pass

Audited by Gen Agent Trust Hub on Jul 5, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill interacts with the api.worldmonitor.app domain to fetch real-time market quotes. This network activity is the primary intended function of the skill and is directed at the service's official API endpoint.
  • [DATA_EXFILTRATION]: Analysis confirmed that no sensitive data (such as local credentials, environment variables, or private files) is accessed or transmitted. The outgoing requests are limited to ticker symbols and formatting parameters.
  • [COMMAND_EXECUTION]: The skill documentation includes a curl example to demonstrate how to call the API. This is a standard informative example and does not involve risky patterns like piping remote content directly into a shell.
  • [CREDENTIALS_UNSAFE]: An example API key (wm_0123456789abcdef0123456789abcdef01234567) is included in the documentation. This is a non-functional placeholder composed of sequential hexadecimal digits and does not constitute a credential leak.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 5, 2026, 02:21 PM
Security Audit — agent-trust-hub — get-market-quotes