Skills
skills/shhac/skills/dotfiles-mac/Gen Agent Trust Hub

dotfiles-mac

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill generates and executes a root 'setup.sh' script and macOS-specific 'defaults.sh' to automate system configuration and application settings.
  • [COMMAND_EXECUTION]: Utilizes administrative tools such as 'chsh' to change the default shell and 'defaults write' to modify system preferences.
  • [EXTERNAL_DOWNLOADS]: Automates the installation of the Homebrew package manager and various software packages defined in a user-provided Brewfile.
  • [SAFE]: Implements a mandatory 'Security Scan' workflow that uses pattern matching to identify and exclude sensitive files, including SSH/GPG private keys and various cloud service API tokens.
  • [SAFE]: Encourages security best practices by facilitating 'age' encryption for sensitive files and recommending gitignored '.local' files for machine-specific overrides.
  • [SAFE]: The 'setup.sh' design follows idempotency and includes safe backup strategies to prevent accidental data loss during the symlinking process.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 07:34 PM