bc-channels

Pass

Audited by Gen Agent Trust Hub on Mar 19, 2026

Risk Level: SAFENO_CODE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch live documentation and API references from BigCommerce's official developer portal (developer.bigcommerce.com). This is a well-known service, and the documentation is used solely for instructional context.
  • [PROMPT_INJECTION]: The use of WebFetch and WebSearch to retrieve documentation creates a surface for indirect prompt injection, as the agent processes content from external sources.
  • Ingestion points: SKILL.md (retrieval of external documentation and search engine results).
  • Boundary markers: None identified in the instructional text.
  • Capability inventory: The skill has access to Bash, Write, Edit, Grep, and Glob tools.
  • Sanitization: No sanitization or verification of the fetched external text is specified.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 19, 2026, 07:32 AM
Security Audit — agent-trust-hub — bc-channels