people-company-search-fiber
Pass
Audited by Gen Agent Trust Hub on Jul 2, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses
python3 -cto extract API credentials from a local configuration file (~/.gooseworks/credentials.json). This is a standard practice for managing access tokens in command-line environments and does not involve executing arbitrary or untrusted code. - [EXTERNAL_DOWNLOADS]: The skill mentions using
npx gooseworks loginfor initial setup.npxis a standard Node.js tool for running packages from the official registry, which is a recognized and safe service for developer tooling. - [DATA_EXFILTRATION]: While the skill makes network requests to
api.gooseworks.ai, these are directed to the service's official API infrastructure for its primary purpose (lead generation and data enrichment). No sensitive local data is sent to unauthorized or unknown external domains.
Audit Metadata