{"version":"1.0","workflow_uuid":"d9581f75-3ab6-5930-9390-8b7413355b5c","workflow_title":"api-relay-audit — Audit AI API Relays for Prompt Attacks","recommended_install":{"schema_version":1,"status":"confirm","policy":"confirm","install_mode":"single","target":"codex","command":"npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c --target codex","dry_run_command":"npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c --target codex --dry-run --json","runtime_commands":{"codex":"npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c --target codex","gemini":"npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c --target gemini","project":"npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c"},"prompt":"Install and make this TokRepo asset usable: \"api-relay-audit — Audit AI API Relays for Prompt Attacks\".\n\nPage: \nUUID: d9581f75-3ab6-5930-9390-8b7413355b5c\nTarget adapter: codex\nPolicy/mode: confirm / single\n\nRead these machine-facing entry points first:\n- metadata: https://tokrepo.com/metadata/d9581f75-3ab6-5930-9390-8b7413355b5c.json\n- install contract: https://tokrepo.com/install-contract/d9581f75-3ab6-5930-9390-8b7413355b5c.json\n- install plan: https://api.tokrepo.com/api/v1/tokenboard/workflows/install-plan?uuid=d9581f75-3ab6-5930-9390-8b7413355b5c&target=codex\n- raw content: https://tokrepo.com/raw/d9581f75-3ab6-5930-9390-8b7413355b5c\n\nCommands:\n- choose the current runtime; do not use unsupported CLI targets.\n- Codex: npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c --target codex\n- Gemini CLI: npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c --target gemini\n- Claude Code / project agent: run npx -y tokrepo@latest install d9581f75-3ab6-5930-9390-8b7413355b5c from the project root; add `--dry-run --json` first to inspect the plan.\n- add `--dry-run --json` to the chosen command first; after the plan allows it, run the chosen command.\n\nExecution rules:\n1. Run the dry-run command first to inspect writes, risks, and rollback.\n2. Confirm with the user which files or global config will change.\n3. After confirmation, run the install command and verify post_verify.\n\nReport back with changed files, verification result, and how to use the asset next.","next_steps":["Run the dry-run command first to inspect writes, risks, and rollback.","Confirm with the user which files or global config will change.","After confirmation, run the install command and verify post_verify."],"success_check":["The user confirmed the risk envelope.","The asset is installed or staged with rollback evidence."]},"install_contract":{"version":"1.0","installReady":false,"title":"api-relay-audit — Audit AI API Relays for Prompt Attacks","summary":"Local 13-step audit for AI API relays/proxies: injection/leakage, context truncation, tool rewriting; verified 419★, pushed 2026-05-11.","assetType":"Prompts","pageUrl":"","sourceUrl":"https://raw.githubusercontent.com/toby-bridges/api-relay-audit/master/audit.py","intendedFor":[],"firstActions":[],"agentFirstSteps":[],"targetPaths":[],"verification":[],"startingPoints":[],"example":"","successOutcome":"","boundaries":[],"askUserIf":["the current workspace stack cannot be matched to a safe upstream template","the target path is not the project root, or an existing file should be merged instead of overwritten"]}}