cloudinary-assets
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a Python script (
scripts/upload_asset.py) and documentation for usingcurlto interact with Cloudinary's REST API. These operations are consistent with the skill's purpose of media asset management and are performed within the context of the user's provided credentials. - [EXTERNAL_DOWNLOADS]: Documentation and instructions reference the official Cloudinary SDKs and the standard
requestslibrary. These references point to well-known, legitimate package registries and are necessary for the skill's functionality. - [SAFE]: Sensitive data such as API secrets and keys are handled securely through environment variables (
CLOUDINARY_URL,CLOUDINARY_API_KEY, etc.), adhering to standard security practices for credential management. - [SAFE]: No evidence of prompt injection, malicious obfuscation, persistence mechanisms, or unauthorized privilege escalation was found in any of the analyzed files.
Audit Metadata