axiom
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references official npm packages from Axiom (@axiomhq/js, @axiomhq/logging, @axiomhq/nextjs, @axiomhq/react, next-axiom). Axiom is a well-known observability service.
- [CREDENTIALS_UNSAFE]: The skill uses environment variables (AXIOM_TOKEN, AXIOM_ORG_ID, AXIOM_DATASET) for configuration, which is a recommended security practice. It includes a placeholder token (xaat-xxxxxxxx) for documentation purposes.
- [COMMAND_EXECUTION]: The skill includes instructions to install dependencies via npm install, which is standard for developer-facing skills.
- [DATA_EXFILTRATION]: The skill is designed to send application logs and metrics to Axiom's official API. It explicitly recommends proxying client-side logs through a server-side route to prevent API token exposure in the browser.
Audit Metadata