telnyx-10dlc-javascript
Facilitates brand registration and campaign management for 10DLC A2P messaging compliance in the US using JavaScript SDK.
Install this skill
or
82/100
Security score
The telnyx-10dlc-javascript skill was audited on Mar 1, 2026 and we found 6 security issues across 4 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 560
Webhook reference - potential data exfiltration
SourceSKILL.md
| 560 | ## Webhooks |
medium line 562
Webhook reference - potential data exfiltration
SourceSKILL.md
| 562 | The following webhook events are sent to your configured webhook URL. |
medium line 563
Webhook reference - potential data exfiltration
SourceSKILL.md
| 563 | All webhooks include `telnyx-timestamp` and `telnyx-signature-ed25519` headers for verification (Standard Webhooks compatible). |
low line 30
Access to .env file
SourceSKILL.md
| 30 | apiKey: process.env['TELNYX_API_KEY'], // This is the default and can be omitted |
low line 30
Reading sensitive environment variables
SourceSKILL.md
| 30 | apiKey: process.env['TELNYX_API_KEY'], // This is the default and can be omitted |
low line 225
External URL reference
SourceSKILL.md
| 225 | Before creating a campaign, use the [Qualify By Usecase endpoint](https://developers.telnyx.com/api-reference/campaign/qualify-by-usecase) to ensure that the brand you want to assign a new campaign... |
Scanned on Mar 1, 2026
View Security Dashboard