pp-tripadvisor

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches and installs the tripadvisor-pp-cli and associated libraries from the developer's GitHub repository (github.com/mvanhorn/printing-press-library) and npm registry (@mvanhorn/printing-press-library). These sources are associated with the skill author.
  • [COMMAND_EXECUTION]: The skill is designed to execute the tripadvisor-pp-cli binary to perform various travel data operations. It uses user-provided arguments to construct shell commands for searching, ranking, and displaying Tripadvisor content.
  • [DATA_EXFILTRATION]: The tool includes a documented feature (--deliver webhook:<url>) that allows command outputs to be sent to an external URL. While this serves a functional purpose for data routing, it represents a potential egress point for data retrieved from the API.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 07:20 PM
Security Audit — agent-trust-hub — pp-tripadvisor