price-monitor
Pass
Audited by Gen Agent Trust Hub on Jun 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were identified. The skill follows best practices for tool development, including standardized logging and clear documentation.
- [EXTERNAL_DOWNLOADS]: The skill fetches marketplace data from the Keepa API via the Nexscope-ai proxy. These operations are functional requirements for the skill's stated purpose and target the vendor's own infrastructure.
- [COMMAND_EXECUTION]: Python scripts are used for data analysis and chart generation. These scripts use standard libraries (statistics, json, argparse) and visualization packages (matplotlib, Pillow) to process structured data without exposing the system to arbitrary command injection.
- [CREDENTIALS_UNSAFE]: Authentication is handled correctly via environment variables (
NEXSCOPE_API_KEY), ensuring that sensitive credentials are not hardcoded in the source code.
Audit Metadata