gw-config-management
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Documents the 'hooks' feature in the configuration file, which allows users to define shell commands (e.g., 'pnpm install', 'cp .env.example .env') that execute during worktree checkouts. This is a core feature for environment automation.
- [DATA_EXFILTRATION]: Provides guidance on automatically copying sensitive files such as '.env' and 'secrets/' directories into new worktrees. These operations are local to the user's machine and consistent with the tool's purpose of maintaining development environments.
- [EXTERNAL_DOWNLOADS]: Documents standard development practices including installing the skill via 'npx' and managing project dependencies using package managers ('npm', 'yarn', 'pnpm') within automated hooks.
- [SAFE]: No malicious patterns, obfuscation, or unauthorized access attempts were identified. All documented behaviors align with the skill's role as a configuration guide for legitimate developer tooling.
Audit Metadata