bx-ftp
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard documentation and integration for FTP, FTPS, and SFTP operations within the BoxLang environment.
- [CREDENTIALS_UNSAFE]: The documentation references sensitive file paths (e.g.,
/home/app/.ssh/id_rsa) and hardcoded credential placeholders in code examples. These are standard for demonstrating SFTP authentication and the skill explicitly includes a 'Common Pitfalls' section advising users to manage credentials via environment variables or configuration files rather than hardcoding. - [EXTERNAL_DOWNLOADS]: Installation instructions reference the
bx-ftpmodule viainstall-bx-moduleandbox install. These are legitimate package managers for the BoxLang and CommandBox ecosystems, and the module name aligns with the author's vendor namespace.
Audit Metadata