1password

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONEXTERNAL_DOWNLOADS
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references 1Password's official developer documentation and provides installation instructions using the Homebrew package manager for the 1Password CLI tool.
  • [COMMAND_EXECUTION]: The skill executes the op binary and tmux commands. The use of tmux is justified as a technical requirement to maintain a persistent TTY session for interactive biometric or application-based authentication within the agent's environment.
  • [DATA_EXFILTRATION]: The skill is designed to read and inject sensitive secrets from 1Password vaults. It mitigates the risk of accidental exposure by providing explicit guardrails that prohibit the agent from pasting secrets into logs, chat, or code, and by recommending the use of op run or op inject to avoid writing sensitive data to disk.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 06:06 AM
Security Audit — agent-trust-hub — 1password