Skills
skills/nweii/agent-stuff/things-mac/Gen Agent Trust Hub

things-mac

Pass

Audited by Gen Agent Trust Hub on May 8, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install a binary from an external source: github.com/ossianhempel/things3-cli via Homebrew (brew install ossianhempel/tap/things3-cli) or Go (go install github.com/ossianhempel/things3-cli/cmd/things@latest).\n- [COMMAND_EXECUTION]: The skill relies on executing the things CLI tool to read and modify the local task database.\n- [PERSISTENCE]: The instructions suggest modifying the shell configuration file (~/.zshrc) to store the THINGS_AUTH_TOKEN environment variable.\n- [INDIRECT_PROMPT_INJECTION]:\n
  • Ingestion points: Data is ingested through commands like things search and things tasks which read content from the local Things database.\n
  • Boundary markers: None identified; the agent processes output directly from the CLI tool.\n
  • Capability inventory: The skill has the capability to add, update, and delete entries via things add, things update, and things delete subprocess calls.\n
  • Sanitization: No explicit sanitization or filtering of the database content is described before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
May 8, 2026, 10:00 PM
Security Audit — agent-trust-hub — things-mac