dropbox-sign
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill uses official Dropbox Sign API endpoints (api.hellosign.com) for all network operations.
- [SAFE]: Authentication is managed through an environment variable ($DROPBOX_SIGN_TOKEN) rather than hardcoded credentials.
- [SAFE]: File interactions are restricted to the /tmp directory for temporary document handling.
- [SAFE]: No malicious patterns such as obfuscation, command injection, or unauthorized data exfiltration were detected.
Audit Metadata