turbodocx-sdk
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of official SDK packages (e.g., '@turbodocx/sdk', 'turbodocx-sdk') from well-known registries like NPM, PyPI, and Maven Central, as well as the vendor's official GitHub repository.
- [COMMAND_EXECUTION]: The agent executes standard shell commands for dependency installation (npm, pip, composer, go get) and code verification (npx tsc), which are restricted to the context of the SDK integration.
- [SAFE]: Sensitive information is handled securely; the skill instructs the user to use .env files for credentials and automatically ensures .gitignore is updated to prevent the accidental exposure of secrets.
- [SAFE]: No malicious patterns, such as prompt injection, unauthorized data access, or obfuscation, were detected in the skill's instructions or supporting documentation.
Audit Metadata