people-company-search-fiber

Pass

Audited by Gen Agent Trust Hub on Jul 2, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses python3 -c to extract API credentials from a local configuration file (~/.gooseworks/credentials.json). This is a standard practice for managing access tokens in command-line environments and does not involve executing arbitrary or untrusted code.
  • [EXTERNAL_DOWNLOADS]: The skill mentions using npx gooseworks login for initial setup. npx is a standard Node.js tool for running packages from the official registry, which is a recognized and safe service for developer tooling.
  • [DATA_EXFILTRATION]: While the skill makes network requests to api.gooseworks.ai, these are directed to the service's official API infrastructure for its primary purpose (lead generation and data enrichment). No sensitive local data is sent to unauthorized or unknown external domains.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 2, 2026, 06:16 AM
Security Audit — agent-trust-hub — people-company-search-fiber