worldlabs
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill integrates with official World Labs API endpoints (api.worldlabs.ai) and provides a clear guide for users to obtain their own API keys from the official platform.
- [SAFE]: Credential management instructions follow standard security practices by using a local
.envfile for theWORLDLABS_API_KEYrather than hardcoding secrets. - [SAFE]: External software dependencies, specifically
@sparkjsdev/sparkandthree.js, are standard libraries for 3D rendering and Gaussian Splat visualization. - [SAFE]: Remote assets and libraries are loaded from established and trusted services, including Cloudflare's CDN (cdnjs.cloudflare.com).
- [SAFE]: No malicious patterns such as obfuscation, unauthorized data exfiltration, or persistence mechanisms were detected in the instructions or code snippets.
Audit Metadata