homebrew-formula-maintenance

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill facilitates formula maintenance through standard Homebrew commands (brew install, brew test, brew audit, brew style) and references project-specific scripts such as update_formula.sh and update_homebrew_formula.py for automation tasks.
  • [EXTERNAL_DOWNLOADS]: Fetches package release information and metadata from the official PyPI registry (pypi.org) via curl. This is a legitimate and expected operation for verifying software releases.
  • [CREDENTIALS_UNSAFE]: References the requirement for a HOMEBREW_TAP_TOKEN environment variable for automated tap updates in CI/CD environments. No actual secrets are hardcoded or exfiltrated, adhering to best practices for credential management.
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 02:20 PM
Security Audit — agent-trust-hub — homebrew-formula-maintenance