Skills
skills/elementalsouls/claude-bughunter/hunt-tls-network/Gen Agent Trust Hub

hunt-tls-network

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs legitimate security tools such as sslyze (via pip3) and testssl.sh (via brew).
  • [COMMAND_EXECUTION]: The skill uses bash commands including curl, dig, openssl, and swaks to perform security validation and reconnaissance tasks.
  • [SAFE]: Automated alerts regarding remote code execution (e.g., curl piped to python3) are false positives. The skill specifically uses python3 -m json.tool for JSON formatting, which is a safe, non-executable operation.
  • [SAFE]: Network requests are made to reputable security platforms like hstspreload.org, crt.sh, mxtoolbox.com, and dmarcian.com for reconnaissance data.
  • [SAFE]: The skill handles untrusted external data safely. Ingestion points: website headers and security API responses (SKILL.md). Boundary markers: Absent. Capability inventory: Bash, curl, and dig. Sanitization: Data is processed via non-executable pipelines using json.tool, grep, and sed. This reconnaissance surface is managed and standard for security tooling.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 04:06 PM
Security Audit — agent-trust-hub — hunt-tls-network