pp-public-param-golden

Pass

Audited by Gen Agent Trust Hub on Jul 2, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of required components using npx from the author's scoped NPM package @mvanhorn/printing-press-library. Pre-built binaries are also available from the vendor's GitHub releases.
  • [COMMAND_EXECUTION]: The skill functions by executing the public-param-golden-pp-cli binary. It uses non-interactive flags and supports an 'agent mode' for compact JSON output.
  • [DATA_EXFILTRATION]: The CLI includes an output delivery feature (--deliver) that can route results to external webhook URLs. This is a documented feature of the framework designed for automation and integration.
  • [REMOTE_CODE_EXECUTION]: The MCP server implementation dynamically exposes CLI commands as tools. The included SQL tool features a security gate that validates queries to ensure they are read-only SELECT or WITH statements, preventing DDL or DML abuse.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 2, 2026, 04:52 AM
Security Audit — agent-trust-hub — pp-public-param-golden