acp-delegated-payment
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill provides conceptual architecture and implementation guidelines for secure payment tokenization without exposing sensitive card data.- [EXTERNAL_DOWNLOADS]: Fetches implementation specifications from trusted providers including OpenAI (developers.openai.com) and Stripe (docs.stripe.com).- [COMMAND_EXECUTION]: Includes 'Bash' and 'WebFetch' in allowed-tools to facilitate implementation and documentation retrieval; no suspicious or malicious command sequences are present in the skill content.- [DATA_EXFILTRATION]: Specifically instructs the agent never to see or log raw card data (PANs or CVCs), adhering to PCI DSS security principles.
Audit Metadata