telnyx-storage-javascript
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes the 'telnyx' package from the official npm registry, which is the expected SDK for the service functionality.
- [CREDENTIALS_UNSAFE]: Uses environment variables for API key management ('process.env['TELNYX_API_KEY']'), adhering to standard security practices for secret handling.
- [PROMPT_INJECTION]: The skill provides an attack surface for indirect prompt injection as it interpolates user-controlled data into SDK calls.
- Ingestion points: Bucket names and object names used as parameters in SDK methods throughout SKILL.md.
- Boundary markers: Absent.
- Capability inventory: Includes the ability to manage SSL certificates (create, retrieve, delete) and generate presigned URLs for objects via the telnyx SDK.
- Sanitization: Not demonstrated in the provided code snippets.
Audit Metadata