acp-checkout-rest
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to retrieve API specifications and guides from OpenAI's developer portal and Stripe's documentation. These are well-known technology services, and the data being fetched is intended for implementation context.
- [CREDENTIALS_UNSAFE]: References the use of Bearer tokens for API authentication using standard placeholders such as "". No hardcoded secrets or actual credentials are present in the documentation.
- [DATA_EXFILTRATION]: Analyzed for unauthorized network operations or access to sensitive files; no malicious data movement patterns were identified.
- [PROMPT_INJECTION]: The instructions focus on technical API implementation and commerce logic. No patterns aimed at bypassing safety filters or overriding core agent behavior were detected.
Audit Metadata