sync-submission
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs local file management tasks including calculating SHA256 hashes, copying manuscripts, and updating JSON metadata to track submission drift.
- [SAFE]: The Python script implements path validation using
canonical.relative_to(project_root)to ensure all file operations are restricted to the project directory, mitigating path traversal risks. - [SAFE]: No network operations, external downloads, or third-party dependencies are present. The script relies exclusively on Python's standard library.
- [SAFE]: Configuration parsing of
project.yamlis handled through simple string manipulation rather than risky deserialization libraries.
Audit Metadata