ucp-dev-patterns

Pass

Audited by Gen Agent Trust Hub on Mar 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
  • [SAFE]: The skill content is purely educational and architectural, focused on commerce protocol implementation. It contains no malicious instructions, safety bypasses, or obfuscated code.\n- [EXTERNAL_DOWNLOADS]: The skill directs the agent to fetch specifications and reference data from the official protocol domain (ucp.dev) and well-known GitHub repositories related to the Universal Commerce Protocol and Agentic Commerce Protocol.\n
  • Ingestion points: WebSearch and WebFetch instructions in SKILL.md targeting site:ucp.dev and specific GitHub URLs.\n
  • Capability inventory: The skill uses tools like Bash, Write, and Edit to support implementation of the architectural patterns, but these are not used to execute untrusted code from the network.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 19, 2026, 07:32 AM
Security Audit — agent-trust-hub — ucp-dev-patterns