Skills
skills/wotaso/analyticscli-skills/analyticscli-ts-sdk/Gen Agent Trust Hub

analyticscli-ts-sdk

Pass

Audited by Gen Agent Trust Hub on Apr 9, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides integration guidelines for a legitimate analytics SDK and follows security best practices.
  • [EXTERNAL_DOWNLOADS]: The skill references the vendor's own SDK (@analyticscli/sdk) and well-known third-party libraries such as expo-application and @react-native-async-storage/async-storage. These are standard dependencies for the stated purpose and do not represent a security risk.
  • [COMMAND_EXECUTION]: Examples provided in the documentation include standard CLI usage for the vendor's tool (analyticscli) for schema validation and goal tracking. No dangerous shell execution or privilege escalation patterns were detected.
  • [DATA_EXFILTRATION]: The skill correctly advises using publishable API keys and environment variables for client-side code, specifically warning against using write keys in host-app code. This aligns with security best practices for public-facing analytics integrations.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 9, 2026, 01:16 PM
Security Audit — agent-trust-hub — analyticscli-ts-sdk