telegram
Pass
Audited by Gen Agent Trust Hub on May 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data exfiltration attempts were detected. The skill's functionality is consistent with its stated purpose of Telegram API integration.
- [DATA_EXPOSURE]: The skill correctly handles sensitive information by encouraging the use of environment variables (
TELEGRAM_BOT_TOKEN) and.envfiles. The utility scripts (scripts/test_bot.pyandscripts/send_message.py) include a_mask_tokenfunction to prevent the leakage of API tokens in logs and error outputs. - [COMMAND_EXECUTION]: CLI scripts provided in the
scripts/directory perform standard tasks such as project initialization (copying local boilerplate files) and making network requests to the official Telegram API. No instances of arbitrary shell execution or unsafe command interpolation were found. - [EXTERNAL_DOWNLOADS]: Dependencies listed in the boilerplates (
package.json,requirements.txt) are well-known, established libraries for the described tasks. Network operations are directed solely to the official Telegram Bot API (api.telegram.org). - [PROMPT_INJECTION]: The AI automation example in
SKILL.mddemonstrates ingesting user messages into an LLM context. This creates an indirect prompt injection surface. - Ingestion points:
update.message.textin theai_responsefunction. - Boundary markers: Absent in the educational boilerplate.
- Capability inventory: The bot has the ability to send messages back to users via
update.message.reply_text. - Sanitization: Absent in the example. While this is a potential risk, it is a standard implementation for the described feature and is intended for educational purposes.
Audit Metadata