postman-openapi-converter
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or high-risk behaviors were detected. The skill instructions focus on structural data transformation from YAML/JSON specs to Postman Collection JSON format.- [PROMPT_INJECTION]: The skill processes external, user-provided API specifications which serve as an ingestion point for untrusted data. While these specs could contain instructions intended to influence the agent (Indirect Prompt Injection), the skill's capability is limited to generating static JSON output for manual import. There are no automated execution paths or file-system interactions that could be exploited. Ingestion points: User-provided OpenAPI/Swagger YAML/JSON files. Boundary markers: Not explicitly defined. Capability inventory: Generation of static JSON strings. Sanitization: Not specified for description or summary fields.
Audit Metadata