dh-first-run

Pass

Audited by Gen Agent Trust Hub on Jun 21, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill implements logic to check for the presence and validity of a tool-specific configuration file at ~/.config/dockhand/config.json. This is standard behavior for a setup or initialization utility for developer tools.
  • [DATA_EXPOSURE]: The instructions provide guidance on secure credential management, suggesting the use of 1Password or environment files (.env.dockhand). This documentation promotes better security practices and does not involve the skill itself accessing or transmitting sensitive data.
  • [COMMAND_EXECUTION]: The skill uses a simple directory listing command (ls) to check for file existence. This is a benign operation and does not involve arbitrary command execution or privilege escalation.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 21, 2026, 11:08 AM
Security Audit — agent-trust-hub — dh-first-run