pybroker-strategy-creator
Pass
Audited by Gen Agent Trust Hub on Apr 28, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch financial data from well-known and legitimate services like Yahoo Finance and Alpaca using the PyBroker library. This is a primary function of the tool and is implemented using standard practices.
- [CREDENTIALS_UNSAFE]: The documentation and patterns correctly advise users to manage sensitive API credentials (such as Alpaca keys) using environment variables (e.g.,
os.environ['ALPACA_API_KEY']) rather than hardcoding them in scripts. - [COMMAND_EXECUTION]: The workflow includes steps for the agent to validate generated Python code via syntax checks (
python -m py_compile) and running local backtests. This is standard developer-agent behavior for code generation tasks. - [SAFE]: The skill relies on a suite of local markdown files for its knowledge base (wiki references and API surface documentation) and does not attempt to download or execute untrusted remote scripts.
Audit Metadata