divination-setup
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the "opendivination" package from PyPI and the vendor's official GitHub repository at github.com/amenti-labs/opendivination.
- [COMMAND_EXECUTION]: Employs a Python helper script (scripts/run_opendivination.py) to execute CLI commands via the subprocess module. The script correctly uses list-based arguments to avoid shell injection vulnerabilities.
- [CREDENTIALS_UNSAFE]: Provides instructions for users to input their own API keys for third-party entropy providers during the setup process. This is a standard configuration workflow for the tool and does not involve hardcoded secrets or silent exfiltration.
Audit Metadata