codex-chezmoi
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: Contains shell command snippets for winget, chezmoi, and git to manage local configuration files and push changes to a remote repository.
- [EXTERNAL_DOWNLOADS]: Directs users to the official chezmoi.io website and winget for tool installation. chezmoi is a widely recognized and well-known tool for configuration management.
- [DATA_EXFILTRATION]: Provides instructions for pushing configuration data (AGENTS.md and skill files) to a user-defined remote Git repository. The skill proactively identifies security risks by advising against synchronizing files that contain authentication tokens or logs.
Audit Metadata