church
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes a custom Python CLI tool (
church.py) to manage repository state. This tool executes local subprocesses to perform git operations and delegate tasks to the companionrepo-biblescript, which is a standard pattern for repository orchestration. - [EXTERNAL_DOWNLOADS]: The
lifecycle provecommand, which is an automated verification utility, invokesnpxto perform installation smoke tests. This is a legitimate development workflow for validating that the package is correctly configured for use. - [SAFE]: The skill implements strong security boundaries by ensuring that dangerous operations (such as git branch creation, rollbacks, and archiving) are planned as dry-runs for user review rather than executed silently. It also incorporates a consent-based profiling system.
Audit Metadata