skills/mukul975/anthropic-cybersecurity-skills/migrating-to-post-quantum-cryptography/Gen Agent Trust Hub
migrating-to-post-quantum-cryptography
Pass
Audited by Gen Agent Trust Hub on Jun 23, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The
scripts/agent.pyhelper script usessubprocess.runto call the localopensslexecutable. This is used specifically to test if the local OpenSSL installation can negotiate theX25519MLKEM768hybrid group with a target server. The command is executed using a list of arguments, which is a secure practice that prevents shell injection. - [EXTERNAL_DOWNLOADS]: The
SKILL.mdinstructions include commands to clone and buildliboqsandoqs-providerfrom the Open Quantum Safe (OQS) GitHub organization. OQS is a well-established and trusted open-source project dedicated to PQC. - [EXTERNAL_DOWNLOADS]: The documentation references and encourages the use of established security tools like
cryptography(via pip) andcdxgen(an OWASP-related tool) for building Cryptography Bill of Materials (CBOMs). - [DATA_EXFILTRATION]: The
scanandhybrid-testcommands inscripts/agent.pyestablish outbound TLS connections to user-specified hosts. These connections are used to inspect the server's certificate or test algorithm negotiation as part of a cryptographic audit. No sensitive data or credentials are exfiltrated from the local system.
Audit Metadata