bf-skillsruntime-dev
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical resource and scaffolding tool for building applications with the Skills Runtime SDK. It provides clear guidelines on implementing security controls like sandboxing and rule-based approvals for sensitive tools.
- [SAFE]: The provided
scaffold_app.pyscript is a utility for generating project structures. It writes files to a user-defined directory and does not contain hidden or malicious logic. - [SAFE]: The skill follows security best practices for credential management by instructing users to use environment variables (e.g.,
OPENAI_API_KEY) rather than hardcoding secrets in configuration files. - [SAFE]: External references and installation paths point to the author's own repository (
okwinds/miscellany), representing standard distribution of the vendor's software without suspicious external dependencies.
Audit Metadata