The Agent Skills Directory

[SAFE]: No malicious patterns, obfuscation, or unauthorized data access attempts were detected. The skill provides clear guidance on integrating with the Loops API.
[CREDENTIALS_UNSAFE]: The skill correctly identifies the need for API keys and explicitly warns the user to never hardcode them in source code, recommending environment variables or secret managers instead.
[EXTERNAL_DOWNLOADS]: Mentions official and vendor-related SDKs for JavaScript, Nuxt, PHP, and Ruby. These packages (loops, nuxt-loops, loops-so/loops, loops_sdk) are standard dependencies for the service and align with the vendor's identity.
[DATA_EXFILTRATION]: Network operations are restricted to the official Loops API domain (app.loops.so) and are consistent with the skill's stated purpose of sending events and managing contacts.

loops-api