api-fuzzing-bug-bounty
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides a extensive list of references to external security tools, wordlists, and repositories (e.g., SecLists, Kiterunner, GraphCrawler, and various GraphQL testing utilities) hosted on platforms like GitHub and Netlify. These are well-known resources in the security community.
- [COMMAND_EXECUTION]: Includes numerous examples of command-line snippets and payloads for testing vulnerabilities like Command Injection, SQL Injection, and XXE. These are formatted as educational references intended for manual execution by a security researcher during authorized testing.
- [DATA_EXFILTRATION]: Contains instructional payloads designed to detect out-of-band interactions and SSRF, such as an example using an external IP logging service (iplogger.com) to verify connectivity and identify IP disclosure during security assessments.
Audit Metadata