pricing-finder
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill utilizes established and widely used Python libraries including
requests,beautifulsoup4,html2text, andduckduckgo-searchfor its core scraping and search operations. - [EXTERNAL_DOWNLOADS]: The skill references several Python packages in
requirements.txtand includes an installation instruction using the@opendirectory.dev/skillsNode.js package. - [SAFE]: Network communications are directed to well-known and expected services such as DuckDuckGo, Google Cache, Tavily, and Firecrawl for data retrieval consistent with the skill's purpose.
- [SAFE]: Data processing is performed using fixed Python scripts embedded in the skill's instructions, which handle JSON serialization and text extraction in a transparent manner.
- [SAFE]: The skill implements robust mitigation strategies for data accuracy, including a zero-hallucination policy and a self-QA step that validates output against predefined constraints.
- [SAFE]: This skill ingests content from external websites, creating a surface for indirect prompt injection that is mitigated by descriptive boundary markers and an automated QA process (Step 10) that scans final output for consistency and formatting.
Audit Metadata