integrating-agent-auth
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the official Scalekit SDKs and common libraries like dotenv and LangChain from standard package registries (npm and PyPI).
- [COMMAND_EXECUTION]: Provides standard package installation commands (pip install, npm install) to set up the development environment.
- [DATA_EXFILTRATION]: The code snippets demonstrate fetching data from official service providers (e.g., Google's Gmail API) and communicating with Scalekit's infrastructure for token management. These network operations are aligned with the skill's primary purpose and do not exhibit exfiltration patterns.
- [CREDENTIALS_UNSAFE]: Appropriately handles secrets by instructing users to use environment variables (SCALEKIT_CLIENT_ID, SCALEKIT_CLIENT_SECRET) rather than hardcoding credentials into the source code.
Audit Metadata