acp-delegated-payment

Pass

Audited by Gen Agent Trust Hub on Mar 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [SAFE]: The skill provides conceptual architecture and implementation guidelines for secure payment tokenization without exposing sensitive card data.- [EXTERNAL_DOWNLOADS]: Fetches implementation specifications from trusted providers including OpenAI (developers.openai.com) and Stripe (docs.stripe.com).- [COMMAND_EXECUTION]: Includes 'Bash' and 'WebFetch' in allowed-tools to facilitate implementation and documentation retrieval; no suspicious or malicious command sequences are present in the skill content.- [DATA_EXFILTRATION]: Specifically instructs the agent never to see or log raw card data (PANs or CVCs), adhering to PCI DSS security principles.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 19, 2026, 07:32 AM
Security Audit — agent-trust-hub — acp-delegated-payment