track-tariff-trends

Pass

Audited by Gen Agent Trust Hub on Jul 5, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
  • [SAFE]: The skill is a legitimate API integration for trade statistics and does not exhibit malicious patterns, obfuscation, or unauthorized access attempts.
  • [EXTERNAL_DOWNLOADS]: Network requests are made to api.worldmonitor.app to fetch tariff data, which is necessary for the skill's operation.
  • [DATA_EXFILTRATION]: The skill transmits parameters like country codes and product sectors to the external WorldMonitor service. These are not sensitive user data and are required for the tool's core functionality.
  • [PROMPT_INJECTION]: The skill consumes external data which could serve as an indirect injection surface. 1. Ingestion points: JSON data returned from the API call. 2. Boundary markers: None specified in instructions. 3. Capability inventory: Performs network operations and shell-based processing (via curl/jq). 4. Sanitization: None specified for external data.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 5, 2026, 02:46 PM
Security Audit — agent-trust-hub — track-tariff-trends