Skills
skills/hotriluan/alkana-dashboard/repomix/Gen Agent Trust Hub

repomix

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The helper script repomix_batch.py executes the repomix CLI tool using subprocess.run. It securely passes arguments as a list to prevent shell injection vulnerabilities.
  • [EXTERNAL_DOWNLOADS]: The skill facilitates the download and execution of the Repomix tool via npx when processing remote repositories from platforms like GitHub. It also provides instructions for manual installation through standard package managers such as npm and Homebrew.
  • [COMMAND_EXECUTION]: The script repomix_batch.py implements an environment loader that searches for and parses .env files in parent directories. This is designed to provide necessary credentials (like GitHub tokens) to the Repomix tool for authenticated repository access.
  • [COMMAND_EXECUTION]: The skill documentation provides various CLI usage examples for packaging repositories, including options to disable the built-in security check (Secretlint) if users need to process codebases that trigger false positives.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 03:17 AM