Skills
skills/evanbacon/serve-sim/serve-sim-placeholder-assets/Gen Agent Trust Hub

serve-sim-placeholder-assets

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The script scripts/audit-placeholder-assets.mjs uses execFileSync to invoke standard macOS system utilities plutil and sips. These tools are used to convert system property lists to JSON and to process/crop device icon files into PNGs. The script executes these commands with arguments derived from local system paths and a user-specified output directory.
  • [EXTERNAL_DOWNLOADS]: No network requests or external downloads were detected. The skill relies exclusively on Node.js built-in modules and pre-existing local system resources.
  • [DATA_EXFILTRATION]: There are no patterns indicating data exfiltration. While the script reads system metadata, it does not attempt to transmit this information to any external server.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 06:20 AM
Security Audit — agent-trust-hub — serve-sim-placeholder-assets