host-disk-cleanup

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes standard macOS and Unix utilities like df, du, and lsof to provide a baseline of disk usage and identify specific high-consumption files.
  • [COMMAND_EXECUTION]: Orchestrates official maintenance commands for several package managers, including npm, pip, homebrew, go, and uv, to purge build and download caches.
  • [COMMAND_EXECUTION]: Uses embedded Python scripts to implement specialized cleanup logic, such as checking for macOS-specific Finder tags to skip important files and performing atomic truncation of active log files.
  • [SAFE]: The skill includes a 'Safety Contract' that explicitly protects sensitive and personal directories, such as Documents, Desktop, and ~/.ssh (referenced as credentials), while restricting cleanup to known disposable locations.
  • [SAFE]: Incorporates a manifest logging requirement, ensuring that every file operation is recorded in a JSON log for user review and auditability.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 03:57 PM
Security Audit — agent-trust-hub — host-disk-cleanup