mindmapio

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to use curl and jq to interact with the Mindmap.io HTTP API. These commands are used to perform legitimate tasks such as creating, reading, and updating mind maps.
  • [EXTERNAL_DOWNLOADS]: All network operations target https://mindmap.io. This is the official domain for the service the skill is designed to manage, qualifying it as a well-known service in this context.
  • [CREDENTIALS_UNSAFE]: The skill provides standard guidance for managing a personal access token via environment variables using a placeholder (<your personal access token>). It explicitly warns against echoing or committing the token, which aligns with security best practices.
  • [DATA_EXFILTRATION]: No patterns of unauthorized data transmission or exfiltration of sensitive local files were detected. Communication is restricted to the intended API endpoint.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 11:36 PM
Security Audit — agent-trust-hub — mindmapio