1password
Pass
Audited by Gen Agent Trust Hub on Jun 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references 1Password's official developer documentation and provides installation instructions using the Homebrew package manager for the 1Password CLI tool.
- [COMMAND_EXECUTION]: The skill executes the
opbinary andtmuxcommands. The use oftmuxis justified as a technical requirement to maintain a persistent TTY session for interactive biometric or application-based authentication within the agent's environment. - [DATA_EXFILTRATION]: The skill is designed to read and inject sensitive secrets from 1Password vaults. It mitigates the risk of accidental exposure by providing explicit guardrails that prohibit the agent from pasting secrets into logs, chat, or code, and by recommending the use of
op runorop injectto avoid writing sensitive data to disk.
Audit Metadata