pstack
Pass
Audited by Gen Agent Trust Hub on Jul 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill includes shell scripts (
spawn-codex-worker.sh,update-self.sh) designed to automate engineering tasks. These scripts execute standard development commands such asgit,date,mkdir, andcodex(the platform's CLI tool). - [EXTERNAL_DOWNLOADS]: The
update-self.shscript is designed to fetch updates for the skill itself. It defaults to a GitHub repository belonging to the author (https://github.com/kashyab12/uni-pstack.git) and usesgit cloneorgit fetchto synchronize the local installation with the latest source code. This is a standard self-update mechanism for a development tool. - [SAFE]: The execution of
codex execandnohupfor background tasks is consistent with the skill's stated purpose of delegating long-running coding tasks to subagents. All network operations (Git) target the vendor's repository or standard development surfaces.
Audit Metadata