security-audit
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides extensive shell commands and a comprehensive bash script (
security-audit.sh) for performing security tasks such as secret detection using regex, file permission audits, and SSL/TLS verification. These are instructional and intended for security assessment. - [EXTERNAL_DOWNLOADS]: Instructions include the installation and execution of well-known security tools from established sources and package registries, including
pip-audit,safety,govulncheck,cargo-audit, andtrivy. These references are standard for the tool's auditing purpose. - [DATA_EXPOSURE]: The skill instructions involve searching for sensitive data (e.g., SSH keys,
.envfiles, API keys) within the local environment. This behavior is consistent with the skill's primary function as an audit toolkit and does not include mechanisms for exfiltrating discovered data. - [SAFE]: All identified behaviors are consistent with the skill's stated purpose of providing a security audit framework. The patterns used for secret detection and vulnerability scanning align with industry-standard security practices and defensive research.
Audit Metadata