offensive-osint
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a structured technical reference for security professionals. It provides operational templates, regex patterns, and curated tool lists for authorized reconnaissance.
- [COMMAND_EXECUTION]: The skill provides numerous shell command templates (e.g.,
curlone-liners) for reconnaissance and secret validation. These are intended for the user to execute as part of an authorized security assessment. - [EXTERNAL_DOWNLOADS]: The
tooling-install.mdreference file contains instructions for installing widely-used security tools from well-known sources like GitHub and official package registries. These are standard tools in the security community. - [DATA_EXFILTRATION]: The skill documents methods for validating discovered secrets by hitting the respective providers' read-only APIs (e.g., AWS, GitHub, Slack). This is a standard part of the security research process and is performed against the providers themselves.
- [NO_CODE]: While the skill includes a Python script (
secret_scan.py), it is a straightforward utility using standard libraries for regex-based scanning of local files. It does not perform network operations or execute arbitrary code.
Audit Metadata