telnyx-iot-javascript
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate documentation and JavaScript examples for the official Telnyx IoT SDK.
- [EXTERNAL_DOWNLOADS]: Recommends the installation of the
telnyxpackage from the public npm registry. This is an expected dependency for the skill's functionality as a vendor-provided tool. - [CREDENTIALS_UNSAFE]: Correctly utilizes environment variables (
process.env['TELNYX_API_KEY']) for handling sensitive authentication tokens, which is a recommended security practice for API integration. - [SAFE]: The skill facilitates the ingestion of data from the Telnyx API, which represents a potential surface for indirect prompt injection, though the risk is handled via standard vendor protocols.
- Ingestion points: API response data from methods such as
client.simCards.list()andclient.otaUpdates.list()inSKILL.md. - Boundary markers: None explicitly shown in the provided code snippets.
- Capability inventory: Network operations directed at Telnyx API endpoints and administrative actions for SIM card management.
- Sanitization: Not explicitly implemented in the provided library usage examples.
Audit Metadata