13f-watch
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill is designed for educational financial research and implements local state management via a ledger system.
- [COMMAND_EXECUTION]: The skill invokes an internal Python script (watch.py) to manage its recommendation database. This is a legitimate use of a helper script included in the skill package and does not expose the system to arbitrary command injection.
- [DATA_EXPOSURE]: The skill reads and writes to a local file (13f/recommended.jsonl) to persist state across sessions. It does not attempt to access sensitive system files, private keys, or credentials.
Audit Metadata