Skills
skills/know-your-people/nooks-skill/nooks/Gen Agent Trust Hub

nooks

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses local shell commands such as grep, mkdir, and xargs to manage a directory-based database of markdown files. These operations are scoped to the kyp/nooks/ workspace directory and are used for organization and searching.
  • [EXTERNAL_DOWNLOADS]: The skill facilitates API calls to the Google Places API (places.googleapis.com) to automate the retrieval of location metadata. Google is a well-known service, and the use of its API for this purpose is standard functionality.
  • [CREDENTIALS_UNSAFE]: The skill provides clear instructions for the secure handling of API keys, explicitly recommending that users store keys in a local configuration file (nooksconfig.yml) that remains outside of version control.
  • [DATA_EXFILTRATION]: No patterns of unauthorized data exfiltration were detected. All personal data and notes are stored locally in the user's workspace, and network activity is limited to the configured Google API.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 10:07 AM