witness
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Executes local scripts using
nodeto manage the witness manifest and history (e.g.,init.mjs,regen.mjs). Theallowed-toolsconfiguration specifically restricts Bash usage tonodecommands. - [EXTERNAL_DOWNLOADS]: Recommends installing the
@noble/ed25519package from the public NPM registry. This is a well-known and widely used cryptographic library.
Audit Metadata