tracking
Enables server-side analytics tracking with customizable providers for efficient event management and user identification.
Install this skill
or
83/100
Security score
The tracking skill was audited on Jun 6, 2026 and we found 5 security issues across 2 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 6
Webhook reference - potential data exfiltration
SourceSKILL.md
| 6 | built-in providers (PostHog, Mixpanel, Amplitude, Webhook). |
medium line 81
Webhook reference - potential data exfiltration
SourceSKILL.md
| 81 | | Webhook | `TRACKING_WEBHOOK_URL` (required), `TRACKING_WEBHOOK_AUTH` (optional, sent as `Authorization` header) | |
medium line 147
Webhook reference - potential data exfiltration
SourceSKILL.md
| 147 | | `packages/core/src/tracking/providers.ts` | Built-in providers (PostHog, Mixpanel, Amplitude, Agent Native Analytics, Webhook) and `registerBuiltinProviders()` | |
low line 77
External URL reference
SourceSKILL.md
| 77 | | PostHog | `POSTHOG_API_KEY` (required), `POSTHOG_HOST` (optional, defaults to `https://us.i.posthog.com`) | |
low line 80
External URL reference
SourceSKILL.md
| 80 | | Agent Native Analytics | `AGENT_NATIVE_ANALYTICS_PUBLIC_KEY` (server), `AGENT_NATIVE_ANALYTICS_ENDPOINT` (optional, defaults to `https://analytics.agent-native.com/track`) | |
Scanned on Jun 6, 2026
View Security DashboardGitHub Stars 464
Rate this skill
Categorymarketing
UpdatedJune 10, 2026
claudefrontenddesignapitestingbackendmarketing-analystgrowth-marketerproduct-marketermixpanelamplitudemarketing
BuilderIO/agent-native