Skills
skills/openfunnel/openfunnel-skills/enterprise-account-research/Gen Agent Trust Hub

enterprise-account-research

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses localized shell scripts (api.sh and signup.sh) to interact with the OpenFunnel API. This is a standard design for skills requiring authenticated external communication.
  • [EXTERNAL_DOWNLOADS]: The skill communicates with api.openfunnel.dev for data retrieval and authentication. As this is the vendor's own infrastructure (openfunnel), it is considered expected behavior for the skill's functionality.
  • [CREDENTIALS_UNSAFE]: The skill follows security best practices for credential management. It uses a dedicated signup.sh script to handle authentication and stores keys in a local .env file that it explicitly adds to .gitignore to prevent accidental leakage. It instructs the agent to never read or expose these keys directly.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 06:12 PM