prophet-market-seeder
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill follows standard authentication practices by requiring a Prophet session token (JWT) to be provided via environment variables or secrets. It performs a legitimate validation check against the Prophet GraphQL API.
- [SAFE]: Database operations are performed on the Seren DB platform. The skill includes automated schema bootstrapping which is restricted to the provided schema file and uses parameterized schema names, preventing SQL injection during the setup phase.
- [SAFE]: External dependencies are limited to the 'psycopg' library for PostgreSQL connectivity, which is a standard and trusted package.
- [SAFE]: The skill's runtime logic is transparent, focusing on market candidate generation, scoring, and submission without any evidence of data exfiltration or unauthorized system access.
Audit Metadata