Skills
skills/lingkaix/smartworkers/workspace-setup/Gen Agent Trust Hub

workspace-setup

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The initialization script init_workspace.sh performs standard workspace setup operations, including creating directory structures (mkdir -p), rendering configuration templates via sed, and managing tool environments with mise and uv.
  • [EXTERNAL_DOWNLOADS]: The skill optionally downloads toolsets and additional skills from established sources. These include the official Anthropics skills repository and the developer's SmartWorkers repository, both of which are categorized as trusted or vendor-aligned contexts.
  • [DATA_EXFILTRATION]: The skill incorporates clear safety guidelines for secret management. It defines workers.jsonc as the primary location for API keys, explicitly instructs agents not to log or exfiltrate these values, and provides example templates to prevent accidental credential leakage.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 11:38 AM
Security Audit — agent-trust-hub — workspace-setup