cost-health
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill manages the execution of multiple sub-processes using a Node.js wrapper script. It utilizes child_process.spawn to run cost-monitoring tools in parallel, which is a standard and secure practice for CI/CD automation.
- [EXTERNAL_DOWNLOADS]: The documentation indicates the use of npx for executing sub-check scripts and managing dependencies such as memory-list. This relies on the well-known npm registry for package retrieval.
- [SAFE]: No malicious patterns, such as credential theft, data exfiltration, or obfuscation, were identified. The skill's behavior aligns with its described purpose as a developer utility for cost management.
Audit Metadata