zendesk
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE]: The skill utilizes environment variables for authentication, instructing the user to store sensitive information like
ZENDESK_API_TOKENandZENDESK_EMAILsecurely rather than hardcoding them in the instructions or scripts. - [EXTERNAL_DOWNLOADS]: All network operations are directed towards well-known and official domains, specifically
*.zendesk.comanddeveloper.zendesk.com, for API interaction and documentation. - [COMMAND_EXECUTION]: Uses common command-line utilities including
curlfor REST API communication,jqfor processing JSON responses, andsedfor local file manipulation of request payloads. - [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection because it retrieves and processes untrusted data from Zendesk tickets (such as subject lines and comment bodies). It lacks explicit boundary delimiters to separate this external content from the agent's primary instructions, though this is inherent to its purpose of managing support tickets.
Audit Metadata