ollama-sync
Pass
Audited by Gen Agent Trust Hub on Jun 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the 'bash' tool to execute 'ollama list'. This is a legitimate system interaction required to fulfill the skill's stated purpose of retrieving local model names.
- [EXTERNAL_DOWNLOADS]: No external script downloads, package installations (npm/pip), or remote code execution patterns were identified.
- [DATA_EXFILTRATION]: No network operations or attempts to send sensitive local data to external domains were found. The skill interacts only with local configuration files.
- [PROMPT_INJECTION]: The instructions do not contain patterns typical of prompt injection, such as commands to ignore safety guidelines, reveal system prompts, or bypass restrictions.
- [CREDENTIALS_UNSAFE]: No hardcoded credentials or access to highly sensitive system files (like SSH keys or AWS credentials) were observed.
Audit Metadata