add-provider-doc
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill is designed to guide an agent through the process of creating documentation and updating configuration files (Dockerfiles, .env.example) for new AI providers.
- [EXTERNAL_DOWNLOADS]: The skill mentions hosting image resources on 'hub-apac-1.lobeobjects.space'. This domain is identified as a vendor-specific resource belonging to the author (lobehub) for documentation assets and does not represent a security risk.
- [DATA_EXPOSURE]: The instructions include multiple explicit warnings to never include real API keys in documentation and to use placeholders instead, aligning with security best practices.
- [INDIRECT_PROMPT_INJECTION]: The skill instructs the agent to read existing documentation files as references. While this creates a theoretical surface where instructions in reference files could influence the agent, the risk is negligible as it is restricted to a structured documentation generation task.
Audit Metadata