Skills
skills/aradotso/codex-skills/codex-auto-register/Gen Agent Trust Hub

codex-auto-register

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFEDATA_EXFILTRATIONCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADS
Full Analysis
  • [DATA_EXFILTRATION]: The skill's primary function involves registering accounts and generating OAuth tokens, which are then optionally uploaded to a remote server via the upload_api_url configuration. This mechanism facilitates the automated transmission of generated credentials to an external endpoint.
  • [CREDENTIALS_UNSAFE]: The automation scripts are designed to generate several local files containing sensitive credentials in plain text. These files include registered_accounts.txt, accounts.txt, ak.txt, rk.txt, and multiple JSON files in the codex_tokens/ directory containing access_token and refresh_token values.
  • [EXTERNAL_DOWNLOADS]: The documentation instructs the user to download and install third-party Python libraries (curl_cffi, requests, urllib3) from public package registries to support the registration and network communication logic.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 06:09 AM