pp-eventbrite

Pass

Audited by Gen Agent Trust Hub on Jun 28, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the necessary management tools from the author's official repositories and package registry. Specifically, it uses npx to fetch @mvanhorn/printing-press-library and go install to download the eventbrite-pp-cli and eventbrite-pp-mcp binaries from github.com/mvanhorn/printing-press-library.
  • [COMMAND_EXECUTION]: The skill is designed to interact with the local operating system by executing the eventbrite-pp-cli binary. It also provides instructions for installing these tools via shell commands such as go install and npx.
  • [DATA_EXFILTRATION]: The underlying CLI tool supports a --deliver webhook:<url> feature. This functionality allows the agent to POST command results (which may include sensitive event and attendee data) to a remote URL. While this is a documented feature for workflow automation, it establishes a capability for data transmission to external endpoints.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 28, 2026, 06:20 AM
Security Audit — agent-trust-hub — pp-eventbrite