Skills
skills/wayai-pro/wayai-skill/wayai/Gen Agent Trust Hub

wayai

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill automates the installation of its own CLI using npm i -g @wayai/cli@latest and manages skill updates via npx skills add wayai-pro/wayai-skill -y. These operations target the official NPM registry and the vendor's own repository.
  • [COMMAND_EXECUTION]: The skill uses the wayai CLI to perform hub operations such as push, pull, login, and status. It also interacts with git for workspace management. These commands are integral to the stated purpose of the skill and are executed with explicit instructions to seek user confirmation (e.g., showing git diff before committing).
  • [DATA_EXFILTRATION]: All documented network activity and deep links are directed to the official platform domains (e.g., app.wayai.pro, api.wayai.pro). There is no evidence of harvesting sensitive local files or redirecting data to unauthorized third-party services.
  • [CREDENTIALS_UNSAFE]: The skill describes secure credential management through the wayai create-credential command, which allows users to store API keys at the organization level rather than hardcoding them in configuration files.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 04:56 PM