Security audit
Ucp Agentic Commerce
Security checks across malware telemetry and agentic risk
Overview
This skill appears to be a legitimate UCP commerce development guide; it does not install hidden code or require credentials, but it can guide agents to browse docs and implement payment/inter-agent workflows.
This looks safe to install as a UCP implementation reference skill. Before using it on real commerce systems, keep web searches and command execution user-approved, use test credentials, and carefully review any generated code that handles payments, OAuth, buyer data, webhooks, or inter-agent communication.
VirusTotal
No VirusTotal findings
Static analysis
No suspicious patterns detected.
