nav-start

Pass

Audited by Gen Agent Trust Hub on May 16, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill orchestrates the development environment by executing shell commands and Python scripts. It uses the claude CLI to manage plugin updates (list, update, uninstall, and marketplace add) and the gh CLI to retrieve assigned issues. These operations are part of the intended functionality for session management.
  • [EXTERNAL_DOWNLOADS]: Fetches version information and performs plugin updates via the GitHub API (api.github.com/repos/alekspetrov/navigator). These operations target the official repository of the skill author and are used solely for maintaining the tool's version.
  • [DATA_EXPOSURE]: Reads project-specific configuration (.agent/.nav-config.json), user profiles (.agent/.user-profile.json), and knowledge graph metadata to customize the session. This data is handled locally to set verbosity, confirmation thresholds, and display statistics.
Audit Metadata
Risk Level
SAFE
Analyzed
May 16, 2026, 04:43 AM
Security Audit — agent-trust-hub — nav-start