skills/openaec-foundation/blender-bonsai-ifcopenshell-sverchok-claude-skill-package/blender-syntax-addons/Gen Agent Trust Hub
blender-syntax-addons
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines secure patterns for managing network access in Blender extensions, explicitly requiring a check of 'bpy.app.online_access' before making requests, which aligns with Blender's official security and privacy guidelines.
- [SAFE]: It promotes the use of 'bpy.utils.extension_path_user' for all file writes, preventing addons from attempting to modify the installation directory, which is a key security restriction in newer Blender versions.
- [SAFE]: Instructions for handling sensitive data like API keys correctly recommend the 'PASSWORD' subtype for string properties, ensuring that credentials are masked in the Blender user interface and not exposed in plain text.
- [SAFE]: The skill discourages the dangerous practice of installing Python packages at runtime (via pip or similar), instead teaching the secure alternative of bundling pre-verified wheel files in a local directory.
Audit Metadata