skills/openaec-foundation/erpnext_anthropic_claude_development_skill_package/frappe-core-api/Gen Agent Trust Hub
frappe-core-api
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of comprehensive technical documentation, code snippets, and integration patterns for the Frappe framework. No malicious patterns, obfuscation, or unauthorized access attempts were detected.
- [CREDENTIALS_UNSAFE]: The documentation uses generic placeholders (e.g., 'api_key:api_secret') for demonstration purposes. It includes explicit security warnings and anti-patterns specifically advising against hardcoding credentials, recommending the use of environment variables or the Frappe site configuration file instead.
- [COMMAND_EXECUTION]: Code examples for database interactions (e.g., 'frappe.db.sql') correctly demonstrate the use of parameterized queries to prevent SQL injection. No suspicious shell commands or unauthorized execution patterns were found.
- [PROMPT_INJECTION]: The content is purely instructional and does not contain any attempts to override agent behavior, bypass safety filters, or extract system prompts.
- [EXTERNAL_DOWNLOADS]: No remote script execution or suspicious external downloads were identified. The examples use standard Python and JavaScript libraries for HTTP communication.
Audit Metadata