telnyx-fax-curl
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous shell command examples using
curlto perform REST API operations, including creating, updating, and deleting resources. - [DATA_EXFILTRATION]: The skill includes instructions to upload local files to a remote API using the
curl -F "contents=@/path/to/file"pattern. While this is the intended purpose of a fax skill, it represents a file-read capability that could be misused if an attacker influences the file path. - [SAFE]: The skill follows security best practices for secret management by instructing users to use environment variables (
TELNYX_API_KEY) rather than hardcoding credentials. - [SAFE]: All network operations are directed towards the official vendor domain (
api.telnyx.com).
Audit Metadata