helicone
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill exclusively communicates with the official Helicone API domain (api.helicone.ai) for logging and analytics purposes.
- [SAFE]: Authentication is performed securely via the HELICONE_TOKEN environment variable, avoiding hardcoded secrets.
- [SAFE]: Use of local shell commands (curl, jq) is restricted to data retrieval and processing of API responses.
- [SAFE]: Temporary files created in /tmp are used for structured JSON payloads to the API, which is standard practice for CLI-based integrations.
Audit Metadata