Skills
skills/hypercerts-org/skills/hypercerts/Gen Agent Trust Hub

hypercerts

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill facilitates the discovery and installation of additional agent skills from external GitHub repositories. The installation process uses the npx skills add command to fetch content from the following sources:
  • github.com/hypercerts-org/ePDS (Vendor Repository)
  • github.com/GainForest/hyperindex (Partner Repository)
  • github.com/hypercerts-org/certified-group-service (Vendor Repository)
  • github.com/hypercerts-org/hypercerts-lexicon (Vendor Repository)
  • [COMMAND_EXECUTION]: The skill provides explicit instructions for the agent to execute shell commands to manage its environment:
  • Installation commands: npx skills add <owner/repo> --skill <skill-name> --yes
  • Search commands: find . "$HOME" -path '*/skills/<skill-name>/SKILL.md' 2>/dev/null to locate installed files.
  • Inspection commands: npx skills add <owner/repo> --list to view remote repository contents without installing.
  • [REMOTE_CODE_EXECUTION]: The skill uses the --yes flag in installation commands to bypass interactive prompts and automatically execute installations in non-interactive environments (scripts, CI jobs). This behavior is intended for automation and relies on the security of the source repositories.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 02:19 PM
Security Audit — agent-trust-hub — hypercerts