Skills
skills/trailofbits/skills/seatbelt-sandboxer/Gen Agent Trust Hub

seatbelt-sandboxer

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is a defensive tool designed to help users restrict macOS applications. It follows industry-standard security principles for sandboxing and process isolation.
  • [DATA_EXPOSURE]: The skill includes an example command to verify sandbox effectiveness by attempting to read ~/.ssh/id_rsa. This is used as a negative test case to confirm that the sandbox correctly blocks access to sensitive data, which is a standard security verification procedure.
  • [EXTERNAL_DOWNLOADS]: References the official Rspack examples repository on GitHub (github.com/rstackjs/rstack-examples) as a source for sample application data for testing. Rspack is a well-known open-source high-performance web bundler.
  • [COMMAND_EXECUTION]: Instructs the agent on how to use the standard macOS sandbox-exec utility to apply generated profiles. This is the intended and documented way to utilize Seatbelt sandboxing on macOS.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 01:45 PM