pp-hayward-omnilogic

Pass

Audited by Gen Agent Trust Hub on May 17, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to install the hayward-omnilogic CLI using npx -y @mvanhorn/printing-press. This package is under the author's verified scope and is a legitimate dependency for the skill's operation.
  • [DATA_EXFILTRATION]: The CLI tool features a --deliver webhook:<url> capability that can POST command output (such as telemetry and chemistry logs) to an external URL. While documented as a legitimate feature for integration, it constitutes a potential data exfiltration surface if the agent is prompted to send pool data to untrusted endpoints.
  • [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute the hayward-omnilogic-pp-cli binary. This is the intended mechanism for the skill's functionality.
Audit Metadata
Risk Level
SAFE
Analyzed
May 17, 2026, 11:27 PM
Security Audit — agent-trust-hub — pp-hayward-omnilogic