korea-weather

Pass

Audited by Gen Agent Trust Hub on May 14, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill communicates with an external proxy server (via KSKILL_PROXY_BASE_URL) to fetch weather forecast data. This is a standard and expected behavior for the skill's primary purpose.
  • [COMMAND_EXECUTION]: It utilizes curl for API interactions. The provided examples demonstrate correct usage of --data-urlencode for input parameters, which effectively mitigates common injection risks.
  • [DATA_EXFILTRATION]: There is no evidence of unauthorized access to sensitive local files, credentials, or environment variables. The skill's design specifically prevents the exposure of upstream API keys to the client or agent context.
Audit Metadata
Risk Level
SAFE
Analyzed
May 14, 2026, 04:06 PM
Security Audit — agent-trust-hub — korea-weather