cloud-schedule
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill interacts with the vendor's API using platform-provided environment variables ($AUTH_TOKEN and $API_URL). This is a standard and safe way to handle authentication.
- [COMMAND_EXECUTION]: Uses
curlto send structured JSON data to the scheduling service. The usage is restricted to the intended API operations (create, list, update, delete). - [DATA_EXFILTRATION]: User-provided prompts are sent to the cloud backend to be stored for scheduling. This is the primary function of the skill and does not involve exfiltrating sensitive local files or environment data.
- [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it stores user-supplied strings for future execution.
- Ingestion points:
promptandtitlefields in SKILL.md. - Boundary markers: Not specified in the instructions for the API payload.
- Capability inventory: Network access via
curlto the vendor's API. - Sanitization: Not explicitly implemented in the skill's logic, relying on the platform's underlying security controls.
Audit Metadata