Skills
skills/vamseeachanta/workspace-hub/trip-planner/Gen Agent Trust Hub

trip-planner

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill automates the creation of GitHub issues using the gh issue create command. This is used to save the final trip plan to the vamseeachanta/achantas-data repository. It correctly uses a temporary file and the --body-file argument to handle the content securely.
  • [EXTERNAL_DOWNLOADS]: The curl tool is employed to verify the status of image URLs. This prevents the inclusion of broken links in the generated itineraries by checking HTTP response headers.
  • [DATA_EXFILTRATION]: While the skill transmits data to an external GitHub repository, this repository is owned by the vendor (vamseeachanta). This is a legitimate use of the tool for its stated purpose of managing trip data.
  • [PROMPT_INJECTION]: The instructions focus entirely on the travel planning workflow and do not contain any patterns typical of prompt injection or attempts to bypass AI safety constraints.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 09:38 AM
Security Audit — agent-trust-hub — trip-planner